Teil 2 - die Addition Code:
Zusätzliches Untersuchungsergebnis von Farbar Recovery Scan Tool (x64) Version: 29-06-2016
durchgeführt von Anke (2016-07-02 12:25:25)
Gestartet von C:\Users\Anke\Downloads
Windows 10 Pro Version 1511 (X64) (2015-12-23 03:38:56)
Start-Modus: Normal
==========================================================
==================== Konten: =============================
Administrator (S-1-5-21-2048645361-787621775-3992761592-500 - Administrator - Disabled)
Anke (S-1-5-21-2048645361-787621775-3992761592-1002 - Administrator - Enabled) => C:\Users\Anke
ASPNET (S-1-5-21-2048645361-787621775-3992761592-1007 - Limited - Enabled)
DefaultAccount (S-1-5-21-2048645361-787621775-3992761592-503 - Limited - Disabled)
Gast (S-1-5-21-2048645361-787621775-3992761592-501 - Limited - Enabled) => C:\Users\Gast
HomeGroupUser$ (S-1-5-21-2048645361-787621775-3992761592-1009 - Limited - Enabled)
==================== Sicherheits-Center ========================
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er entfernt.)
AV: Norton AntiVirus (Enabled - Up to date) {53C7D717-52E2-B95E-FA61-6F32ECC805DB}
AV: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AV: Emsisoft Anti-Malware (Disabled - Out of date) {2F44E1F9-850B-1C7A-0E56-EB2E0A3E20C9}
AS: Emsisoft Anti-Malware (Disabled - Out of date) {9425001D-A331-13F4-34E6-D05C71B96A74}
AS: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AS: Norton AntiVirus (Enabled - Up to date) {E8A636F3-74D8-B6D0-C0D1-5440974F4F66}
==================== Installierte Programme ======================
(Nur Adware-Programme mit dem Zusatz "Hidden" können in die Fixlist aufgenommen werden, um sie sichtbar zu machen. Die Adware-Programme sollten manuell deinstalliert werden.)
7-Zip 9.22beta (HKLM-x32\...\7-Zip) (Version: - )
Ad-Aware Web Companion (x32 Version: 2.0.1025.2130 - Lavasoft) Hidden
Adobe Acrobat Reader DC - Deutsch (HKLM-x32\...\{AC76BA86-7AD7-1031-7B44-AC0F074E4100}) (Version: 15.016.20045 - Adobe Systems Incorporated)
Adobe AIR (HKLM-x32\...\Adobe AIR) (Version: 4.0.0.1390 - Adobe Systems Incorporated)
Adobe Download Assistant (HKLM-x32\...\com.adobe.downloadassistant.AdobeDownloadAssistant) (Version: 1.2.9 - Adobe Systems Incorporated)
Adobe Flash Player 22 NPAPI (HKLM-x32\...\Adobe Flash Player NPAPI) (Version: 22.0.0.192 - Adobe Systems Incorporated)
Adobe Illustrator CS2 (HKLM-x32\...\Adobe Illustrator CS2) (Version: 12.000.000 - Adobe Systems Inc.)
Adobe Shockwave Player 12.0 (HKLM-x32\...\Adobe Shockwave Player) (Version: 12.0.3.133 - Adobe Systems, Inc.)
Adobe SVG Viewer 3.0 (HKLM-x32\...\Adobe SVG Viewer) (Version: 3.0 - Adobe Systems, Inc.)
Adobe Update Management Tool (HKLM-x32\...\{534A7A1A-7102-4AF6-23EA-7CD279C7B625}_is1) (Version: 8.0 - PainteR)
Amazon Music (HKU\S-1-5-21-2048645361-787621775-3992761592-1002\...\Amazon Amazon Music) (Version: 3.8.1.754 - Amazon Services LLC)
AMD Catalyst Install Manager (HKLM\...\{9AB0D5B6-4779-8C4F-CA91-A1FEDB56D7EC}) (Version: 8.0.911.0 - Advanced Micro Devices, Inc.)
ANT Drivers Installer x64 (Version: 2.3.4 - Garmin Ltd or its subsidiaries) Hidden
Any Audio Converter 4.0.2 (HKLM-x32\...\Any Audio Converter_is1) (Version: - Any-Audio-Converter.com)
Any Video Converter 5.7.9 (HKLM-x32\...\Any Video Converter_is1) (Version: - Any-Video-Converter.com)
Apple Application Support (32-Bit) (HKLM-x32\...\{26356515-5821-40FA-9C3D-9785052A1062}) (Version: 4.3.1 - Apple Inc.)
Apple Application Support (64-Bit) (HKLM\...\{C2651553-6CA3-4822-B2E6-BC4ACA6E0EA2}) (Version: 4.3.1 - Apple Inc.)
Apple Mobile Device Support (HKLM\...\{2E4AF2A6-50EA-4260-9BA4-5E582D11879A}) (Version: 9.3.0.15 - Apple Inc.)
Apple Software Update (HKLM-x32\...\{56EC47AA-5813-4FF6-8E75-544026FBEA83}) (Version: 2.2.0.150 - Apple Inc.)
Asmedia ASM104x USB 3.0 Host Controller Driver (HKLM-x32\...\{E4FB0B39-C991-4EE7-95DD-1A1A7857D33D}) (Version: 1.10.0.0 - Asmedia Technology)
ASUS MultiFrame (HKLM-x32\...\{FB4D076A-DEFD-4EAF-AD63-70D5A3BC262A}) (Version: 1.0.22 - ASUS)
Audacity 2.0.5 (HKLM-x32\...\Audacity_is1) (Version: 2.0.5 - Audacity Team)
AudibleManager (HKLM-x32\...\AudibleManager) (Version: 40.35651776.-1946156659.0 - Audible, Inc.)
Avanquest update (HKLM-x32\...\{76E41F43-59D2-4F30-BA42-9A762EE1E8DE}) (Version: 1.34 - Avanquest Software)
BeadTool 4.8.7 (HKLM-x32\...\BeadTool 4_is1) (Version: 4.8.7 - Fired Up Software)
BMPro_v5_2_2_WIN_DL version 5.2.2 (HKLM-x32\...\{52521890-BD2B-445C-8409-C0D1E57F1A45}_is1) (Version: 5.2.2 - beading-software)
Bonjour (HKLM\...\{56DDDFB8-7F79-4480-89D5-25E1F52AB28F}) (Version: 3.1.0.1 - Apple Inc.)
Brother P-touch Address Book 1.1 (HKLM-x32\...\InstallShield_{B2023017-DEE4-44F7-8A71-CA6084BF534C}) (Version: 1.1.100 - Brother Industries, Ltd.)
Brother P-touch Address Book 1.1 (x32 Version: 1.1.100 - Brother Industries, Ltd.) Hidden
Brother P-touch Editor 5.1 (HKLM-x32\...\{39270390-A851-4E4B-94A9-D5C468216ED3}) (Version: 5.1.0610 - Brother Industries, Ltd.)
Brother P-touch Update Software (HKLM-x32\...\{2BFF734B-EE92-4C50-AE69-91E4D32BCCC5}) (Version: 1.0.0100 - Brother Industries, Ltd.)
Brother QL-Series Software User's Guide (HKLM-x32\...\InstallShield_{A242CAB2-870C-4AC9-8AFE-34379D9383CD}) (Version: 1.00.0000 - Brother Industries, Ltd.)
Brother QL-Series Software User's Guide (x32 Version: 1.00.0000 - Brother Industries, Ltd.) Hidden
calibre (HKLM-x32\...\{1E9AC64C-A2C1-4FD3-A6F3-64D0E661B0E9}) (Version: 0.9.43 - Kovid Goyal)
CollageIt 1.9.3 (HKLM-x32\...\{D9757258-30B2-496E-86F2-84920C5858E1}_is1) (Version: 1.9.3 - PearlMountain Technology Co., Ltd)
cyberJack Base Components (HKLM-x32\...\{FC338210-F594-11D3-BA24-00001C3AB4DF}) (Version: 6.10.7 - REINER SCT)
D3DX10 (x32 Version: 15.4.2368.0902 - Microsoft) Hidden
DesignPro 5 (HKLM-x32\...\InstallShield_{F82C6574-AD88-4B40-A432-970BC77F1BD2}) (Version: 5.5.708 - Avery Dennison)
DesignPro 5 (x32 Version: 5.5.708 - Avery Dennison) Hidden
Desktopicon amazon.de (HKLM\...\DesktopIconAmazon) (Version: 1.0.1 - )
Deutsche Post E-Porto (HKLM-x32\...\{A51F5414-4A2B-45A0-8EF2-B4D29CFBCAE7}) (Version: 2.3.0 - Deutsche Post AG)
DHTML Editing Component (HKLM-x32\...\{2EA870FA-585F-4187-903D-CB9FFD21E2E0}) (Version: 6.02.0001 - Microsoft Corporation)
Driver Mender (HKLM-x32\...\{36415915-0B92-4F82-A240-42D3C14304F0}) (Version: 8.1 - Driver Mender)
Dropbox (HKLM-x32\...\Dropbox) (Version: 5.4.24 - Dropbox, Inc.)
Dropbox Update Helper (x32 Version: 1.3.43.1 - Dropbox, Inc.) Hidden
EasyBeadPatterns (HKU\S-1-5-21-2048645361-787621775-3992761592-1002\...\{AppFrame}}_is1) (Version: 0.6.1.0 - Michael Hemphill)
Elevated Installer (x32 Version: 4.1.19.0 - Garmin Ltd or its subsidiaries) Hidden
ElsterFormular (HKLM-x32\...\ElsterFormular) (Version: 16.2.17437 - Landesfinanzdirektion Thüringen)
eMagicOne Store Manager for PrestaShop PROFESSIONAL 2.19.7.1273 (HKLM-x32\...\{A07B5EA3-DA77-42CB-A8F6-2813B36BDDB6}_is1) (Version: 2.19.7.1273 - eMagicOne)
Emsisoft Anti-Malware (HKLM-x32\...\{5502032C-88C1-4303-99FE-B5CBD7684CEA}_is1) (Version: 10.0 - Emsisoft Ltd.)
Epson Benutzerhandbuch WF-2540 Series (HKLM-x32\...\WF-2540 Series Useg) (Version: - )
EPSON BX535WD Series Printer Uninstall (HKLM\...\EPSON BX535WD Series) (Version: - SEIKO EPSON Corporation)
Epson Connect Guide (HKLM-x32\...\Epson Connect Guide) (Version: - )
Epson Connect Printer Setup (HKLM-x32\...\{D9B1D51B-EB56-410D-AEB5-1CCFAC4B6C8C}) (Version: 1.3.0 - SEIKO EPSON CORPORATION)
Epson Event Manager (HKLM-x32\...\{8F01524C-0676-4CC1-B4AE-64753C723391}) (Version: 3.01.0005 - Seiko Epson Corporation)
Epson E-Web Print (HKLM-x32\...\{6BF9F374-EC67-4808-A90C-F127DE6D989D}) (Version: 1.23.0000 - SEIKO EPSON CORPORATION)
Epson FAX Utility (HKLM-x32\...\{0CBE6C93-CB2E-4378-91EE-12BE6D4E2E4A}) (Version: 1.31.00 - SEIKO EPSON CORPORATION)
Epson Netzwerkhandbuch WF-2540 Series (HKLM-x32\...\WF-2540 Series Netg) (Version: - )
Epson PC-FAX Driver (HKLM-x32\...\EPSON PC-FAX Driver 2) (Version: - )
EPSON Printer Finder (HKLM-x32\...\{B8ECD0D3-AE08-4891-B6C7-32F96B75EB6C}) (Version: 1.0.0 - SEIKO EPSON CORPORATION)
EPSON Remote Print Uninstall (HKLM\...\EPSON Remote Print) (Version: - SEIKO EPSON Corporation)
EPSON Scan (HKLM-x32\...\EPSON Scanner) (Version: - Seiko Epson Corporation)
EPSON StandardBusinessPrinters Printer Uninstall (HKLM\...\EPSON StandardBusinessPrinters) (Version: - SEIKO EPSON Corporation)
EPSON WF-2540 Series Printer Uninstall (HKLM\...\EPSON WF-2540 Series) (Version: - SEIKO EPSON Corporation)
EpsonNet Config V4 (HKLM-x32\...\{08013FB5-DF8B-4D29-9B5E-B3DE88EBA6CA}) (Version: 4.1.0 - SEIKO EPSON CORPORATION)
EpsonNet Print (HKLM-x32\...\{3E31400D-274E-4647-916C-2CACC3741799}) (Version: 2.6.0 - SEIKO EPSON CORPORATION)
EtikettenAssistent 4.2 (HKLM-x32\...\{9AEF64B1-79A5-4E2F-8FBC-4CA89ECD3595}) (Version: 4.2.1 - HERMA)
Exif-Viewer 2.51 (HKLM-x32\...\Exif-Viewer) (Version: 2.51 - Ralf Bibinger)
Extended Asian Language font pack for Adobe Acrobat Reader DC (HKLM-x32\...\{AC76BA86-7AD7-2530-0000-AC0F074E4100}) (Version: 15.007.20033 - Adobe Systems Incorporated)
Eye-Fi Center 3.4 (HKLM-x32\...\{18B00AC5-C082-471E-88B0-F02FE5A2541A}) (Version: 3.4.26 - Eye-Fi, Inc)
FileZilla Client 3.15.0.2 (HKLM-x32\...\FileZilla Client) (Version: 3.15.0.2 - Tim Kosse)
FormsForWeb® Filler 3.2.3 (HKLM-x32\...\{18815D2C-C62D-4066-94F3-55966581D2A5}) (Version: 3.2.3 - Lucom GmbH)
Fotogalerie (x32 Version: 16.4.3508.0205 - Microsoft Corporation) Hidden
Free Audio Converter version 5.0.40.514 (HKLM-x32\...\Free Audio Converter_is1) (Version: 5.0.40.514 - DVDVideoSoft Ltd.)
Free FLAC to MP3 Converter 1.4 (HKLM-x32\...\{A54C01BD-1277-4722-B42B-EC9800A90B1E}_is1) (Version: 1.4 - PolySoft Solutions)
Free Mp3 Wma Converter V 2.2 (HKLM-x32\...\Free Mp3 Wma Converter_is1) (Version: 2.2.0.0 - Koyote Soft)
Free Video to MP3 Converter version 5.0.28.827 (HKLM-x32\...\Free Video to MP3 Converter_is1) (Version: 5.0.28.827 - DVDVideoSoft Ltd.)
Free YouTube Download version 3.2.60.713 (HKLM-x32\...\Free YouTube Download_is1) (Version: 3.2.60.713 - DVDVideoSoft Ltd.)
FreeFileSync 6.14 (HKLM-x32\...\FreeFileSync) (Version: 6.14 - www.FreeFileSync.org)
Freemake Video Converter Version 4.0.4 (HKLM-x32\...\Freemake Video Converter_is1) (Version: 4.0.4 - Ellora Assets Corporation)
Garmin Express (HKLM-x32\...\{2639b4f0-83b4-4f3d-942f-e4ba22a40b9b}) (Version: 4.1.19.0 - Garmin Ltd or its subsidiaries)
Garmin Express (x32 Version: 4.1.19.0 - Garmin Ltd or its subsidiaries) Hidden
Garmin Express Tray (x32 Version: 4.1.19.0 - Garmin Ltd or its subsidiaries) Hidden
GIMP 2.8.16 (HKLM\...\GIMP-2_is1) (Version: 2.8.16 - The GIMP Team)
Google Earth (HKLM-x32\...\{4D2A6330-2F8B-11E3-9C40-B8AC6F97B88E}) (Version: 7.1.2.2041 - Google)
Google Update Helper (x32 Version: 1.3.25.11 - Google Inc.) Hidden
Google Update Helper (x32 Version: 1.3.30.3 - Google Inc.) Hidden
GTK2-Runtime Win64 (HKLM\...\GTK2-Runtime Win64) (Version: 2.22.1-2014-02-01-ts-win64 - Tom Schoonjans)
honestech Audio Recorder 2.0 Deluxe (HKLM-x32\...\{A0BC5BCD-893F-47F4-8903-FDC7CAC2AFB1}) (Version: 2.0 - honestech)
honestech Audio Recorder 2.0 Deluxe (x32 Version: 2.0 - Honest Technology) Hidden
honestech VHS to DVD 2.0 SE (HKLM-x32\...\{2856F5EA-E98A-40E4-BAD6-8C644A4A3F3C}) (Version: 2.0 - honestech)
HyperSnap 7 (HKLM-x32\...\HyperSnap 7) (Version: 7.29.00 - Hyperionics Technology LLC)
Inkscape 0.48.4 (HKLM-x32\...\Inkscape) (Version: 0.48.4 - )
InPixio Photo (HKLM-x32\...\{5F0C0CD8-77B1-4C3E-9F01-5AF10D85DBB4}) (Version: 6.03.0 - Avanquest Software)
Intel(R) Control Center (HKLM-x32\...\{F8A9085D-4C7A-41a9-8A77-C8998A96C421}) (Version: 1.2.1.1010 - Intel Corporation)
Intel(R) Management Engine Components (HKLM-x32\...\{65153EA5-8B6E-43B6-857B-C6E4FC25798A}) (Version: 8.1.30.1349 - Intel Corporation)
Intel(R) Small Business Advantage (HKLM-x32\...\{6A6D86CD-B004-46b7-8951-7BB75A776F8C}) (Version: 1.1.22.3687 - Intel(R) Corporation)
Intel(R) Smart Connect Technology 3.0 x64 (HKLM\...\{01C324B7-3744-4EC0-9C4F-40BCCDD47CFB}) (Version: 3.0.41.1571 - Intel)
Intel(R) Update Manager (x32 Version: 1.0.0.34813 - Intel Corporation) Hidden
Intel(R) USB 3.0 eXtensible Host Controller Driver (HKLM-x32\...\{240C3DDD-C5E9-4029-9DF7-95650D040CF2}) (Version: 1.0.8.251 - Intel Corporation)
iSkysoft iMedia Converter Deluxe(Build 5.8.0.1) (HKLM-x32\...\iSkysoft iMedia Converter Deluxe_is1) (Version: 5.8.0.1 - iSkysoft Software)
iTunes (HKLM\...\{9F4BF859-C3A4-4AB6-BDD1-9C5D58188598}) (Version: 12.4.1.6 - Apple Inc.)
Java 8 Update 91 (HKLM-x32\...\{26A24AE4-039D-4CA4-87B4-2F83218091F0}) (Version: 8.0.910.14 - Oracle Corporation)
jbead (HKLM-x32\...\jbead) (Version: - )
JPEG to PDF 1.0 (HKLM-x32\...\{4097ADD8-7890-4CBD-953A-1187EF2C6FA5}_is1) (Version: - jpegtopdf.com)
LAME v3.99.3 (for Windows) (HKLM-x32\...\LAME_is1) (Version: - )
LavasoftTcpService (x32 Version: 2.3.4.7 - Lavasoft) Hidden
Lexmark Network Twain Scan Driver (HKLM-x32\...\{57799805-67CC-4401-5C6F-540D2E3DDE40}) (Version: 1.16.99.0 - Lexmark International, Inc.)
Lexmark ScanBack Deinstallationsprogamm (HKLM\...\Lexmark ScanBack) (Version: - Lexmark International, Inc.)
Logitech Harmony Remote Software 7 (HKLM-x32\...\{5C6F884D-680C-448B-B4C9-22296EE1B206}) (Version: 7.7.0.0 - Logitech)
Magic Photo Editor 6.1 (HKLM-x32\...\Magic Photo Editor_is1) (Version: - Photo Editor Software, Inc.)
MAGIX Foto & Grafik Designer 9 (HKLM-x32\...\MX.{E84F54E0-4BC7-4C19-A969-D22574CDC118}) (Version: 9.1.2.28274 - MAGIX AG)
MAGIX Foto & Grafik Designer 9 (Version: 9.1.2.28274 - MAGIX AG) Hidden
Mein CEWE FOTOBUCH (HKLM-x32\...\Mein CEWE FOTOBUCH) (Version: 5.1.6 - CEWE Stiftung u Co. KGaA)
Microsoft .NET Framework 1.1 (HKLM-x32\...\{CB2F7EDD-9D1F-43C1-90FC-4F52EAE172A1}) (Version: 1.1.4322 - Microsoft)
Microsoft Access database engine 2010 (German) (HKLM-x32\...\{90140000-00D1-0407-0000-0000000FF1CE}) (Version: 14.0.6029.1000 - Microsoft Corporation)
Microsoft ASP.NET MVC 4 Runtime (HKLM-x32\...\{3FE312D5-B862-40CE-8E4E-A6D8ABF62736}) (Version: 4.0.40804.0 - Microsoft Corporation)
Microsoft Office Professional Plus 2010 (HKLM-x32\...\Office14.PROPLUSR) (Version: 14.0.7015.1000 - Microsoft Corporation)
Microsoft Silverlight (HKLM\...\{89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}) (Version: 5.1.50428.0 - Microsoft Corporation)
Microsoft SQL Server 2005 Compact Edition [ENU] (HKLM-x32\...\{F0B430D1-B6AA-473D-9B06-AA3DD01FD0B8}) (Version: 3.1.0000 - Microsoft Corporation)
Microsoft SQL Server Compact 3.5 SP2 ENU (HKLM-x32\...\{3A9FC03D-C685-4831-94CF-4EDFD3749497}) (Version: 3.5.8080.0 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}) (Version: 8.0.61001 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{7299052b-02a4-4627-81f2-1818da5d550d}) (Version: 8.0.56336 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{837b34e3-7c30-493c-8f6a-2b0f04e2912c}) (Version: 8.0.59193 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.17 (HKLM\...\{8220EEFE-38CD-377E-8595-13398D740ACE}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161 (HKLM\...\{5FCE6D76-F5DC-37AB-B2B8-22AB8CEDB1D4}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729 (HKLM-x32\...\{402ED4A1-8F5B-387A-8688-997ABF58B8F2}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729 (HKLM-x32\...\{6AFCA4E1-9B78-3640-8F72-A7BF33448200}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (HKLM-x32\...\{9A25302D-30C0-39D9-BD6F-21E6EC160475}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148 (HKLM-x32\...\{1F1C2DFC-2D24-3E06-BCB8-725134ADF989}) (Version: 9.0.30729.4148 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (HKLM-x32\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2010 x64 Redistributable - 10.0.40219 (HKLM\...\{1D8E6291-B0D5-35EC-8441-6616F567A0F7}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.61030 (HKLM-x32\...\{ca67548a-5ebe-413a-b50c-4b9ceb6d66c6}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.61030 (HKLM-x32\...\{33d1fd90-4274-48a1-9bc1-97e33d9c2d6f}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x64) - 12.0.21005 (HKLM-x32\...\{90ffcee5-8608-4e94-8c18-a4feb4f83fb8}) (Version: 12.0.21005.1 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.30501 (HKLM-x32\...\{e6e75766-da0f-4ba2-9788-6ea593ce702d}) (Version: 12.0.30501.0 - Microsoft Corporation)
Microsoft Visual Studio 2010 Tools for Office Runtime (x64) (HKLM\...\Microsoft Visual Studio 2010 Tools for Office Runtime (x64)) (Version: 10.0.50903 - Microsoft Corporation)
Microsoft Visual Studio 2010-Tools für Office-Laufzeit (x64) Language Pack - DEU (HKLM\...\Microsoft Visual Studio 2010 Tools for Office Runtime (x64) Language Pack - DEU) (Version: 10.0.50903 - Microsoft Corporation)
Microsoft-Maus- und Tastatur-Center (HKLM\...\Microsoft Mouse and Keyboard Center) (Version: 2.5.166.0 - Microsoft Corporation)
Movie Maker (x32 Version: 16.4.3508.0205 - Microsoft Corporation) Hidden
Mozilla Firefox 38.0.1 (x86 en-US) (HKLM-x32\...\Mozilla Firefox 38.0.1 (x86 en-US)) (Version: 38.0.1 - Mozilla)
MP3 Repair Tool v1.5.2 (HKLM-x32\...\MP3 Repair Tool_is1) (Version: 1.5.2 - Aspect one)
mp3Tag Pro 8.1 (HKLM-x32\...\mp3Tag Pro_is1) (Version: - ManiacTools.com)
MSXML 4.0 SP2 (KB954430) (HKLM-x32\...\{86493ADD-824D-4B8E-BD72-8C5DCDC52A71}) (Version: 4.20.9870.0 - Microsoft Corporation)
MSXML 4.0 SP2 (KB973688) (HKLM-x32\...\{F662A8E6-F4DC-41A2-901E-8C11F044BDEC}) (Version: 4.20.9876.0 - Microsoft Corporation)
MSXML 4.0 SP3 Parser (HKLM-x32\...\{196467F1-C11F-4F76-858B-5812ADC83B94}) (Version: 4.30.2100.0 - Microsoft Corporation)
MSXML 4.0 SP3 Parser (KB2758694) (HKLM-x32\...\{1D95BA90-F4F8-47EC-A882-441C99D30C1E}) (Version: 4.30.2117.0 - Microsoft Corporation)
Nero 12 (HKLM-x32\...\{560FC78C-A4B2-461D-9B47-820C1EEF87B8}) (Version: 12.0.02000 - Nero AG)
Nero 12 Content Pack (HKLM-x32\...\{4E7AC009-5212-499F-942F-A5AA42AE359E}) (Version: 12.0.00400 - Nero AG)
Norton AntiVirus (HKLM-x32\...\NAV) (Version: 22.6.0.142 - Symantec Corporation)
Norton Identity Safe (HKLM-x32\...\NST) (Version: 2013.4.0.10 - Symantec Corporation)
NVIDIA 3D Vision Controller-Treiber 344.65 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.NVIRUSB) (Version: 344.65 - NVIDIA Corporation)
NVIDIA 3D Vision Treiber 353.82 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.3DVision) (Version: 353.82 - NVIDIA Corporation)
NVIDIA GeForce Experience 2.4.3.22 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.GFExperience) (Version: 2.4.3.22 - NVIDIA Corporation)
NVIDIA Grafiktreiber 353.82 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Driver) (Version: 353.82 - NVIDIA Corporation)
NVIDIA HD-Audiotreiber 1.3.34.3 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_HDAudio.Driver) (Version: 1.3.34.3 - NVIDIA Corporation)
NVIDIA PhysX-Systemsoftware 9.14.0702 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.PhysX) (Version: 9.14.0702 - NVIDIA Corporation)
OpenOffice 4.1.0 (HKLM-x32\...\{E19483E2-6C18-494D-A307-D4498BCFD2C7}) (Version: 4.10.9764 - Apache Software Foundation)
paint.net (HKLM\...\{DADC2AF6-DC9F-4BCF-BFCE-DCEC16EF507C}) (Version: 4.0.9 - dotPDN LLC)
PAYBACK Toolbar 1.2 (HKLM-x32\...\PAYBACK Toolbar_is1) (Version: 1.2.0 - PAYBACK GmbH)
PCStitch 10 (HKLM-x32\...\{7D389358-56D0-4988-BAAC-5ACE907CCEBD}) (Version: 10.00.23 - M&R Technologies, Inc.)
PDF24 Creator 7.0.4 (HKLM-x32\...\{81A6F461-0DBA-4F12-B56F-0E977EC10576}_is1) (Version: - PDF24.org)
PDFCreator (HKLM-x32\...\{0001B4FD-9EA3-4D90-A79E-FD14BA3AB01D}) (Version: 1.7.3 - pdfforge)
PhoneClean 3.5.2 (HKLM-x32\...\{2FAFFE02-4D6B-4C0A-906B-1B33DAF0DD14}}_is1) (Version: 3.5.2 - iMobie Inc.)
PhotoFiltre (HKU\S-1-5-21-2048645361-787621775-3992761592-1002\...\PhotoFiltre) (Version: - )
PhotoScape (HKLM-x32\...\PhotoScape) (Version: - )
PhotoSync (HKLM\...\{CECDB976-FC3E-49E1-8A47-DF447D8B4DBC}) (Version: 3.0.7 - touchbyte GmbH)
Pop Art Studio 6.5 (HKLM-x32\...\{AE48B3F0-0288-46CA-9859-3C2109E9BE7B}) (Version: 6.5 - Fotoview)
Prerequisite installer (x32 Version: 12.0.0002 - Nero AG) Hidden
Presto! PageManager 9.03 SE (HKLM-x32\...\{04AF7536-446D-4F5A-8920-B4E885E4581B}) (Version: 9.03.06 - Newsoft Technology Corporation)
Print Artist Platinum (HKLM-x32\...\{4BC2BE31-3DCF-4CF5-AD52-66DB68638EC0}) (Version: 23.0.0.31 - Avanquest)
QuickPar 0.9 (HKLM-x32\...\QuickPar) (Version: 0.9 - Peter B. Clements)
QuickTime 7 (HKLM-x32\...\{3D2CBC2C-65D4-4463-87AB-BB2C859C1F3E}) (Version: 7.76.80.95 - Apple Inc.)
RawTherapee Version 4.2 (HKLM\...\{128459AB-59A7-430A-8BD0-3D8803D50400}_is1) (Version: 4.2 - rawtherapee.com)
RealDownloader (x32 Version: 1.3.3 - RealNetworks, Inc.) Hidden
RealNetworks - Microsoft Visual C++ 2008 Runtime (x32 Version: 9.0 - RealNetworks, Inc) Hidden
RealNetworks - Microsoft Visual C++ 2010 Runtime (x32 Version: 10.0 - RealNetworks, Inc) Hidden
RealPlayer (HKLM-x32\...\RealPlayer 16.0) (Version: 16.0.3 - RealNetworks)
Realtek Ethernet Controller Driver (HKLM-x32\...\{8833FFB6-5B0C-4764-81AA-06DFEED9A476}) (Version: 7.67.1226.2012 - Realtek)
Realtek High Definition Audio Driver (HKLM-x32\...\{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}) (Version: 6.0.1.7535 - Realtek Semiconductor Corp.)
RealUpgrade 1.1 (x32 Version: 1.1.0 - RealNetworks, Inc.) Hidden
Remote Control USB Driver (HKLM-x32\...\{8471021C-F529-43DE-84DF-3612E10F58C4}) (Version: 2.3.2.317 - )
Samsung Printer Live Update (HKLM-x32\...\Samsung Printer Live Update) (Version: 1.01.00:04(2013-04-22) - Samsung Electronics Co., Ltd.)
Service Pack 2 for Microsoft Office 2010 (KB2687455) 32-Bit Edition (HKLM-x32\...\{91140000-0011-0000-0000-0000000FF1CE}_Office14.PROPLUSR_{DE28B448-32E8-4E8F-84F0-A52B21A49B5B}) (Version: - Microsoft)
Shark007 Standard Codecs (HKLM-x32\...\{898E81AD-6DB9-4750-866B-B8958C5DC7AA}) (Version: 1.7.0 - Shark007)
SHIELD Streaming (Version: 4.1.1000 - NVIDIA Corporation) Hidden
SHIELD Wireless Controller Driver (Version: 2.4.3.22 - NVIDIA Corporation) Hidden
Silhouette Connect (HKLM-x32\...\{1DA09298-393F-4097-AF87-5A6CD80B1813}) (Version: 1.0.241 - Silhouette America)
Silhouette Studio (HKLM-x32\...\{FC7EA748-4433-4CC7-9ED3-E130A4768ECF}) (Version: 3.0.531 - Silhouette America)
Skype™ 7.0 (HKLM-x32\...\{24991BA0-F0EE-44AD-9CC8-5EC50AECF6B7}) (Version: 7.0.102 - Skype Technologies S.A.)
Snip (HKU\S-1-5-21-2048645361-787621775-3992761592-1002\...\{525d439e-e22a-4221-8fd1-25b845fe0038}) (Version: 0.1.5119.0 - Microsoft Corporation)
Snip (x32 Version: 0.1.5119.0 - Microsoft) Hidden
Soda PDF 3D Reader (HKLM-x32\...\{025C48E1-4695-4F49-906E-EBABCD54EA51}) (Version: 5.0.30.11889 - LULU Software Limited)
Software Updater (HKLM-x32\...\{8DBC5A0A-31C4-46C7-B252-6B593EA11A87}) (Version: 4.3.7 - SEIKO EPSON CORPORATION)
StarMoney (x32 Version: 3.0.6.28 - StarFinanz) Hidden
StarMoney (x32 Version: 4.0.0.203 - StarFinanz) Hidden
StarMoney 8.0 (HKLM-x32\...\{E7D7D551-85F2-4A2F-B681-80E67ED234C4}) (Version: 8.0 - Star Finanz GmbH)
StarMoney 9.0 (HKLM-x32\...\{D8FAB21F-B43A-43A9-9CEB-CE1AB3C5C4E4}) (Version: 9.0 - Star Finanz GmbH)
streamWriter (HKLM-x32\...\streamWriter_is1) (Version: - )
swMSM (x32 Version: 12.0.0.1 - Adobe Systems, Inc) Hidden
Synology Assistant (remove only) (HKLM-x32\...\Synology Assistant) (Version: - )
TeamViewer 9 (HKLM-x32\...\TeamViewer 9) (Version: 9.0.29480 - TeamViewer)
Tinypic 3.18 (HKLM-x32\...\{E3723A04-A894-4036-A78E-282E18F43C0A}_is1) (Version: Tinypic 3.18 - E. Fiedler)
Tipard TS Converter 7.1.50 (HKLM-x32\...\{2D85A23D-06EF-4df2-BF09-B39AEDAE9140}_is1) (Version: 7.1.50 - Tipard Studio)
TSR Watermark Image software version 3.2.0.9 - Free version (HKLM-x32\...\TSR Watermark Image - Free version_is1) (Version: 3.2.0.9 - TSR Software)
TuneUp Utilities 2014 (de-DE) (x32 Version: 14.0.1000.353 - TuneUp Software) Hidden
TuneUp Utilities 2014 (HKLM-x32\...\TuneUp Utilities) (Version: 14.0.1000.353 - TuneUp Software)
TuneUp Utilities 2014 (x32 Version: 14.0.1000.353 - TuneUp Software) Hidden
TuneUp Utilities Language Pack (de-DE) (x32 Version: 12.0.3600.73 - TuneUp Software) Hidden
Turbo Lister 2 (HKLM-x32\...\{8927E07C-97F7-4A54-88FB-D976F50DD46E}) (Version: 2.00.0000 - eBay Inc.)
USB2.0 Grabber (HKLM-x32\...\{45518B6D-9DDF-4144-83E4-A56762524F35}) (Version: 7.12.000.003 - Youyan)
Usenet.nl (HKLM-x32\...\Usenet.nl_is1) (Version: - )
Video mp3 Extractor (HKLM-x32\...\Video mp3 Extractor_is1) (Version: - GeoVid)
Visual Studio Tools for the Office system 3.0 Runtime (HKLM-x32\...\Visual Studio Tools for the Office system 3.0 Runtime) (Version: - Microsoft Corporation)
Visual Studio Tools for the Office system 3.0 Runtime Service Pack 1 (KB949258) (HKLM-x32\...\{8FB53850-246A-3507-8ADE-0060093FFEA6}.KB949258) (Version: 1 - Microsoft Corporation)
Visual Studio-Tools für Office System 3.0 Runtime Language Pack - DEU (HKLM-x32\...\Visual Studio Tools for the Office system 3.0 Runtime Language Pack - DEU) (Version: - Microsoft Corporation)
VLC media player (HKLM-x32\...\VLC media player) (Version: 2.2.1 - VideoLAN)
waterMark V2 (HKLM-x32\...\waterMark V2) (Version: - )
WavePad Sound Editor (HKLM-x32\...\WavePad) (Version: 5.48 - NCH Software)
Web Companion (HKLM-x32\...\{88B10E3E-8911-4FAC-8663-CCF6E33C58B3}_WebCompanion) (Version: 2.0.1025.2130 - Lavasoft)
Welcome App (Start-up experience) (x32 Version: 12.0.14000 - Nero AG) Hidden
Winamp (HKLM-x32\...\Winamp) (Version: 5.65 - Nullsoft, Inc)
Winamp Erkennungs-Plug-in (HKU\S-1-5-21-2048645361-787621775-3992761592-1002\...\Winamp Detect) (Version: 1.0.0.1 - Nullsoft, Inc)
WinDjView 2.0.2 (HKLM\...\WinDjView) (Version: 2.0.2 - Andrew Zhezherun)
Windows Live Essentials (HKLM-x32\...\WinLiveSuite) (Version: 16.4.3508.0205 - Microsoft Corporation)
Windows-Treiberpaket - Dynastream Innovations, Inc. ANT LibUSB Drivers (04/11/2012 1.2.40.201) (HKLM\...\F9D2A789F9CFF8CEC36B544F53877C80F1F73C46) (Version: 04/11/2012 1.2.40.201 - Dynastream Innovations, Inc.)
Windows-Treiberpaket - Silicon Labs Software (DSI_SiUSBXp_3_1) USB (02/06/2007 3.1) (HKLM\...\D1506E0025B5A3F9EB8270FE81C1EEDD9388B8A2) (Version: 02/06/2007 3.1 - Silicon Labs Software)
WinRAR 5.10 (64-Bit) (HKLM\...\WinRAR archiver) (Version: 5.10.0 - win.rar GmbH)
WinZip 18.0 (HKLM\...\{CD95F661-A5C4-44F5-A6AA-ECDD91C240DF}) (Version: 18.0.10661 - WinZip Computing, S.L. )
XMedia Recode Version 3.2.1.1 (HKLM-x32\...\{DDA3C325-47B2-4730-9672-BF3771C08799}_is1) (Version: 3.2.1.1 - XMedia Recode)
==================== Benutzerdefinierte CLSID (Nicht auf der Ausnahmeliste): ==========================
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)
CustomCLSID: HKU\S-1-5-21-2048645361-787621775-3992761592-1002_Classes\CLSID\{087B3AE3-E237-4467-B8DB-5A38AB959AC9}\InprocServer32 -> C:\Program Files (x86)\OpenOffice 4\program\shlxthdl\shlxthdl_x64.dll (Apache Software Foundation)
CustomCLSID: HKU\S-1-5-21-2048645361-787621775-3992761592-1002_Classes\CLSID\{3B092F0C-7696-40E3-A80F-68D74DA84210}\InprocServer32 -> C:\Program Files (x86)\OpenOffice 4\program\shlxthdl\shlxthdl_x64.dll (Apache Software Foundation)
CustomCLSID: HKU\S-1-5-21-2048645361-787621775-3992761592-1002_Classes\CLSID\{4a30e683-5254-45a8-a825-0f70908a86d4}\InprocServer32 -> C:\Program Files (x86)\HyperSnap 7\x64\ThumbDhs64.dll ()
CustomCLSID: HKU\S-1-5-21-2048645361-787621775-3992761592-1002_Classes\CLSID\{63542C48-9552-494A-84F7-73AA6A7C99C1}\InprocServer32 -> C:\Program Files (x86)\OpenOffice 4\program\shlxthdl\shlxthdl_x64.dll (Apache Software Foundation)
CustomCLSID: HKU\S-1-5-21-2048645361-787621775-3992761592-1002_Classes\CLSID\{71DCE5D6-4B57-496B-AC21-CD5B54EB93FD}\localserver32 -> C:\Users\Anke\AppData\Local\Microsoft\OneDrive\17.3.6390.0509\FileCoAuth.exe (Microsoft Corporation)
CustomCLSID: HKU\S-1-5-21-2048645361-787621775-3992761592-1002_Classes\CLSID\{7BC0E710-5703-45BE-A29D-5D46D8B39262}\InprocServer32 -> C:\Program Files (x86)\OpenOffice 4\program\shlxthdl\ooofilt_x64.dll (Apache Software Foundation)
CustomCLSID: HKU\S-1-5-21-2048645361-787621775-3992761592-1002_Classes\CLSID\{AE424E85-F6DF-4910-A6A9-438797986431}\InprocServer32 -> C:\Program Files (x86)\OpenOffice 4\program\shlxthdl\propertyhdl_x64.dll (Apache Software Foundation)
CustomCLSID: HKU\S-1-5-21-2048645361-787621775-3992761592-1002_Classes\CLSID\{C52AF81D-F7A0-4AAB-8E87-F80A60CCD396}\InprocServer32 -> C:\Program Files (x86)\OpenOffice 4\program\shlxthdl\shlxthdl_x64.dll (Apache Software Foundation)
==================== Geplante Aufgaben (Nicht auf der Ausnahmeliste) =============
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)
Task: {02BF04A8-9302-44D4-9145-14F88EED7167} - System32\Tasks\Microsoft\Windows\Media Center\UpdateRecordPath => C:\Windows\ehome\ehPrivJob.exe
Task: {04BC21AF-CF97-4593-9A30-0070788A77A1} - \Microsoft\Windows\Setup\gwx\refreshgwxcontent -> Keine Datei <==== ACHTUNG
Task: {075ECB43-56A6-4B5A-8816-A36FCC28923E} - System32\Tasks\Microsoft_MKC_Logon_Task_ipoint.exe => C:\Program Files\Microsoft Mouse and Keyboard Center\ipoint.exe [2015-07-08] (Microsoft Corporation)
Task: {0920880A-B063-415D-BD07-1B9058FAD01D} - System32\Tasks\Microsoft\Windows\Media Center\SqlLiteRecoveryTask => C:\Windows\ehome\mcupdate.exe
Task: {0E2584DF-956F-4EF2-BCB7-87D727BF4C6B} - System32\Tasks\Microsoft\Windows\Media Center\mcupdate_scheduled => C:\Windows\ehome\mcupdate.exe
Task: {0FC04249-AF95-40BA-96EC-1F77A7464D99} - System32\Tasks\0 => Iexplore.exe <==== ACHTUNG
Task: {122BA269-DB04-4374-9430-818B6F0340FE} - System32\Tasks\Microsoft\Windows\Media Center\PvrRecoveryTask => C:\Windows\ehome\mcupdate.exe
Task: {13898B9E-D8AA-41DA-AEC7-386A1A275125} - System32\Tasks\Norton AntiVirus\Norton Error Analyzer => C:\Program Files (x86)\Norton AntiVirus\Engine\22.6.0.142\SymErr.exe [2016-02-10] (Symantec Corporation)
Task: {16923E64-9B81-4F82-B729-79F95471E741} - System32\Tasks\{6B46AE76-3F76-412F-AB55-2F228017FF35} => C:\Users\Anke\Downloads\lame.exe
Task: {1C2C526E-0FFC-4AAD-B3BA-C28E75F56C53} - System32\Tasks\{2E7D3251-17C6-4A9C-9134-E31A9F43A3D0} => pcalua.exe -a "D:\Film u. Audio\Filemaster\Filemaster\Cracked - Photoshop Creative\Phantasia.GERMAN-FASiSO (CRACKED).exe" -d "D:\Film u. Audio\Filemaster\Filemaster\Cracked - Photoshop Creative"
Task: {1D2F2E28-AD39-4679-852B-99A6A0DF7CD8} - System32\Tasks\{404613DD-8DFC-4A1F-A0B9-94E522374DB4} => C:\Program Files (x86)\BeadTool4\BeadTool4.exe [2014-10-23] ()
Task: {1FC19C15-1DCA-4377-A55A-96BD4EFD3D99} - System32\Tasks\Adobe Acrobat Update Task => C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [2016-04-22] (Adobe Systems Incorporated)
Task: {246493EB-F070-41B9-8D15-9C9F4B963AB8} - System32\Tasks\Microsoft\Windows\Media Center\PBDADiscovery => C:\Windows\ehome\ehPrivJob.exe
Task: {2BABCC63-E5CB-4E56-9433-F4ECD801C7C5} - System32\Tasks\Adobe-Online-Aktualisierungsprogramm => C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [2016-04-22] (Adobe Systems Incorporated)
Task: {2DD50F8A-5EC2-4A47-8048-B195ACA1BDCA} - System32\Tasks\{820570D8-9BF9-4A72-A428-43826AF39017} => pcalua.exe -a "C:\Users\Anke\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\BC75WH5I\bc_6_10_0_SP_2.exe" -d C:\Users\Anke\Desktop
Task: {2FCF0738-9A91-4E47-89C6-C76C3AFFCE18} - System32\Tasks\Microsoft\Windows\Media Center\OCURDiscovery => C:\Windows\ehome\ehPrivJob.exe
Task: {32EABBD2-F9AF-435D-8C3D-51EE7BB43076} - \Microsoft\Windows\Setup\GWXTriggers\refreshgwxconfig-B -> Keine Datei <==== ACHTUNG
Task: {34A73861-73CE-4884-A5D9-7C9CF0E75794} - System32\Tasks\{A9FBE015-6828-4ECE-8281-EDE5D95B8BC4} => pcalua.exe -a "C:\Program Files (x86)\Audible\Bin\Manager.exe" -d "C:\Program Files (x86)\Audible\BIN\"
Task: {37492AAC-DF48-478A-9519-A07285E4A36A} - System32\Tasks\{CA7DE7B1-B634-4CF9-8039-2BBFB5F5A4FD} => C:\Program Files (x86)\BeadTool4\BeadTool4.exe [2014-10-23] ()
Task: {3EC99AA9-05F9-45B5-B56B-A8DCF7E3D97E} - System32\Tasks\{164097E1-7310-4BD9-901A-E2E94CEB60F5} => C:\Users\Anke\Downloads\lame.exe
Task: {40687C6C-498E-426C-AD09-F308166C581F} - System32\Tasks\Remediation\AntimalwareMigrationTask => C:\Program Files\Common Files\AV\Norton AntiVirus\Upgrade.exe [2016-02-26] (Symantec Corporation)
Task: {40F80DE4-D745-45F0-8733-CBC5996D4A3E} - System32\Tasks\{FBBC1F95-CF08-40C4-BBC3-9AC33BE6E7BA} => pcalua.exe -a C:\Users\Anke\Downloads\WISOEUERundKasse2015_Testversion.exe -d C:\Users\Anke\Downloads
Task: {43B909C7-47EE-4C64-A4DF-063A790390B8} - System32\Tasks\Norton Identity Safe\Norton Error Processor => C:\Program Files (x86)\Norton Identity Safe\Engine\2013.4.0.10\SymErr.exe [2013-05-30] (Symantec Corporation)
Task: {4DEE6144-9034-49EB-BE01-0A86E5399941} - System32\Tasks\RealPlayerRealUpgradeScheduledTaskS-1-5-21-2048645361-787621775-3992761592-1002 => C:\Program Files (x86)\Real\RealUpgrade\RealUpgrade.exe [2013-08-14] (RealNetworks, Inc.)
Task: {50D0503E-1041-449F-9A6C-7C59F6940886} - System32\Tasks\DropboxUpdateTaskMachineUA => C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe [2016-06-09] (Dropbox, Inc.)
Task: {54B0055C-A05E-4520-B1D0-10BBE70F13D2} - \Microsoft\Windows\Setup\gwx\launchtrayprocess -> Keine Datei <==== ACHTUNG
Task: {58335CB9-4E65-4FFA-B647-BC530D385E56} - System32\Tasks\Microsoft\Windows\Media Center\DispatchRecoveryTasks => C:\Windows\ehome\ehPrivJob.exe
Task: {59868BA6-BE8A-4D56-9AF6-25ADCD726BD7} - System32\Tasks\Microsoft_Hardware_Launch_itype_exe => C:\Program Files\Microsoft Mouse and Keyboard Center\itype.exe [2015-07-08] (Microsoft Corporation)
Task: {6226DFCF-E019-4384-B6EA-898098CF76E4} - System32\Tasks\Microsoft_Hardware_Launch_mousekeyboardcenter_exe => C:\Program Files\Microsoft Mouse and Keyboard Center\mousekeyboardcenter.exe [2015-07-08] (Microsoft)
Task: {67BBC34C-BB86-4F3C-877C-EC9170AFB6AC} - System32\Tasks\Microsoft\Windows\Media Center\InstallPlayReady => C:\Windows\ehome\ehPrivJob.exe
Task: {687273DE-036A-4885-8DE3-2A78ADD78745} - \Microsoft\Windows\Setup\GWXTriggers\Time-5d -> Keine Datei <==== ACHTUNG
Task: {69ECB956-60F9-4E36-9498-CB9E8E1D4830} - System32\Tasks\Real Player-Online-Aktualisierungsprogramm => c:\program files (x86)\real\realplayer\Update\realsched.exe [2013-11-08] (RealNetworks, Inc.)
Task: {718D0481-07CA-4E5A-AC10-ACF6D9BC9DE7} - System32\Tasks\RealPlayerRealUpgradeLogonTaskS-1-5-21-2048645361-787621775-3992761592-1002 => C:\Program Files (x86)\Real\RealUpgrade\RealUpgrade.exe [2013-08-14] (RealNetworks, Inc.)
Task: {791A40EC-8628-4F29-B722-6EBD78CD52ED} - System32\Tasks\Norton AntiVirus\Norton Error Processor => C:\Program Files (x86)\Norton AntiVirus\Engine\22.6.0.142\SymErr.exe [2016-02-10] (Symantec Corporation)
Task: {7D016C68-E977-48B1-AB72-B5DFDFC4D900} - \Microsoft\Windows\Setup\GWXTriggers\OutOfSleep-5d -> Keine Datei <==== ACHTUNG
Task: {7D597E59-3F2D-4591-8587-C6B660E6D52B} - System32\Tasks\Norton AntiVirus\Norton Autofix => C:\Program Files (x86)\Norton AntiVirus\Engine\22.6.0.142\SymErr.exe [2016-02-10] (Symantec Corporation)
Task: {7DA8B331-CA49-4581-83B3-7A2A21BAE49E} - System32\Tasks\Microsoft\Windows\Media Center\RegisterSearch => C:\Windows\ehome\ehPrivJob.exe
Task: {83ADDA9D-4A8D-4C82-9825-019BD7AADB3C} - System32\Tasks\Microsoft\Windows\Media Center\ConfigureInternetTimeService => C:\Windows\ehome\ehPrivJob.exe
Task: {8591C774-27B6-41CF-BDD4-CA0107355884} - System32\Tasks\Microsoft\Windows\Media Center\RecordingRestart => C:\Windows\ehome\ehrec.exe
Task: {8691566C-86FD-4EFE-8A7B-359C33DAAECD} - System32\Tasks\DropboxUpdateTaskMachineCore => C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe [2016-06-09] (Dropbox, Inc.)
Task: {882F921E-FF31-441A-9381-F18498F969B2} - System32\Tasks\Microsoft\Windows\Media Center\PBDADiscoveryW2 => C:\Windows\ehome\ehPrivJob.exe
Task: {8ACEAC46-804E-4AE0-9DD4-5224F3120708} - System32\Tasks\CreateChoiceProcessTask => C:\Windows\System32\browserchoice.exe
Task: {8D2DD80E-A8AD-473B-9349-DC2BF885DAB9} - System32\Tasks\Microsoft\Windows\Media Center\ehDRMInit => C:\Windows\ehome\ehPrivJob.exe
Task: {8DACBE2F-432A-41DC-A8FC-108499166BE1} - System32\Tasks\Microsoft\Windows\Media Center\OCURActivate => C:\Windows\ehome\ehPrivJob.exe
Task: {94ED4B28-FDEC-4159-97D4-B2BD74A1AC51} - System32\Tasks\Java Update Scheduler => C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [2016-04-01] (Oracle Corporation)
Task: {9F51143D-CFD8-47CF-803D-310DAA3E719A} - System32\Tasks\Microsoft\Windows\Media Center\MediaCenterRecoveryTask => C:\Windows\ehome\mcupdate.exe
Task: {A1EDA231-47F4-4708-8E4F-6879FDAB95F7} - System32\Tasks\Apple\AppleSoftwareUpdate => C:\Program Files (x86)\Apple Software Update\SoftwareUpdate.exe [2016-02-23] (Apple Inc.)
Task: {A2E4A1CB-4A6E-4F3E-92EF-C2D08C06DA49} - System32\Tasks\{EC2A3EA9-4FAF-4E80-812E-A771CDC47C1B} => pcalua.exe -a E:\dotnetfx\dotnetfx35.exe -d E:\dotnetfx
Task: {A3FCAAD6-4E9B-4793-9011-8AE1E71C5922} - System32\Tasks\Microsoft\Windows\Media Center\PeriodicScanRetry => C:\Windows\ehome\MCUpdate.exe
Task: {A4BC689C-6E27-4423-8CD9-33C8EF06DAEC} - \Microsoft\Windows\Setup\gwx\refreshgwxconfigandcontent -> Keine Datei <==== ACHTUNG
Task: {A5A3D19B-5947-4E77-845B-5B219EE512F3} - System32\Tasks\Microsoft\Windows\Media Center\PBDADiscoveryW1 => C:\Windows\ehome\ehPrivJob.exe
Task: {A6F89B03-91A2-4365-8506-ED982824B50E} - System32\Tasks\Microsoft\Windows\Media Center\ReindexSearchRoot => C:\Windows\ehome\ehPrivJob.exe
Task: {A868ED46-2F43-4516-8FA9-757E093C5D53} - System32\Tasks\Driver Mender-RTMScan => C:\Program Files (x86)\Driver Mender\Driver Mender\DriverMender.exe [2014-03-13] (PC Drivers Headquarters)
Task: {A8D13839-F30A-46DA-82E1-55A1217A546C} - System32\Tasks\GarminUpdaterTask => C:\Program Files (x86)\Garmin\Express SelfUpdater\ExpressSelfUpdater.exe [2016-04-08] ()
Task: {B0A46A9B-5253-46B7-92D6-2E1AEFAF5B0E} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2015-08-27] (Google Inc.)
Task: {B0DF442C-83A9-42C1-8585-33193BD23D44} - System32\Tasks\{8E7A10ED-C198-4C09-8CB4-ABC81A032B2D} => C:\Users\Anke\Downloads\lame.exe
Task: {B6E5892D-176D-4036-B1F5-3AA81EF112A9} - \Microsoft\Windows\Setup\GWXTriggers\Logon-5d -> Keine Datei <==== ACHTUNG
Task: {BAA29795-C98A-4385-9537-AD9931BD3B9A} - System32\Tasks\{76F24850-287C-4FFE-AC6A-84078191844B} => C:\Program Files (x86)\BeadTool4\BeadTool4.exe [2014-10-23] ()
Task: {C1C91A52-B494-4675-852C-E53656E120E3} - System32\Tasks\Driver Mender-RTMUpdater => C:\Program Files (x86)\Driver Mender\Driver Mender\DriverMender.exe [2014-03-13] (PC Drivers Headquarters)
Task: {C8761A9F-A378-4AC0-B9AA-2AC5F3B009D1} - System32\Tasks\Driver Mender-RTMRules => C:\Program Files (x86)\Driver Mender\Driver Mender\DriverMender.exe [2014-03-13] (PC Drivers Headquarters)
Task: {C92B35CF-107A-4BBF-88F1-C52209865AD7} - System32\Tasks\Update\Google Update => Chrome.exe <==== ACHTUNG
Task: {CB8B7BEB-93C3-40A8-96FB-D6E49F081E21} - System32\Tasks\{CD6E8AE8-F69F-462E-9BC2-DD190B1ABD6E} => msiexec.exe /package "C:\Users\Anke\Desktop\EPortoInstaller2010_x64_v2.3.msi"
Task: {CC1DDA80-C525-46D1-9023-8CE8CAF606B1} - System32\Tasks\TuneUpUtilities_Task_BkGndMaintenance2013 => C:\Program Files (x86)\TuneUp Utilities 2014\OneClick.exe [2015-06-25] (TuneUp Software)
Task: {CC35DD1E-C02B-42DE-BD9A-5CB2F8B0107C} - System32\Tasks\Microsoft_MKC_Logon_Task_itype.exe => C:\Program Files\Microsoft Mouse and Keyboard Center\itype.exe [2015-07-08] (Microsoft Corporation)
Task: {D0C4061A-D4B5-40F7-B9D3-D45202313FC7} - System32\Tasks\Lexware-Online-Aktualisierungsprogramm => C:\Program Files (x86)\Lexware\Update Manager\LxUpdateManager.exe
Task: {D73B6293-6639-4938-B6CB-042767BD398C} - System32\Tasks\Norton WSC Integration => C:\Program Files (x86)\Norton AntiVirus\Engine\22.6.0.142\WSCStub.exe [2016-02-26] (Symantec Corporation)
Task: {D91B264B-829D-46E2-B16E-F948F1BD4D37} - System32\Tasks\Microsoft_Hardware_Launch_ipoint_exe => C:\Program Files\Microsoft Mouse and Keyboard Center\ipoint.exe [2015-07-08] (Microsoft Corporation)
Task: {D96C8F9B-5CC2-4D97-8194-772F9E757F52} - System32\Tasks\Adobe Flash Player Updater => C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2016-06-16] (Adobe Systems Incorporated)
Task: {E333CBA4-2468-4DD2-AD6D-415AA736378C} - System32\Tasks\Microsoft\Windows\Media Center\PvrScheduleTask => C:\Windows\ehome\mcupdate.exe
Task: {E6AE546D-8F8F-442F-87E8-840073E07A44} - \Microsoft\Windows\Setup\GWXTriggers\Telemetry-4xd -> Keine Datei <==== ACHTUNG
Task: {E9A55A98-752E-478C-B32F-1DD2305C5095} - System32\Tasks\Microsoft\Windows\Media Center\ActivateWindowsSearch => C:\Windows\ehome\ehPrivJob.exe
Task: {EE3C3E5A-1D03-4260-9224-2A49ACD59E7F} - System32\Tasks\Microsoft\Windows\Media Center\mcupdate => C:\Windows\ehome\mcupdate.exe
Task: {F01545E3-B0B5-4449-ABF4-1CDA3F361472} - System32\Tasks\Microsoft\Windows\Media Center\ObjectStoreRecoveryTask => C:\Windows\ehome\mcupdate.exe
Task: {F100E584-1A9F-4597-9D6D-AE6E70DD3557} - \Microsoft\Windows\Setup\GWXTriggers\OutOfIdle-5d -> Keine Datei <==== ACHTUNG
Task: {F154E55A-A1FC-4972-8C07-1DC1B8DC3301} - \Microsoft\Windows\Setup\GWXTriggers\MachineUnlock-5d -> Keine Datei <==== ACHTUNG
Task: {F1B2A9D3-A87E-4632-B30C-965DA85D438D} - System32\Tasks\Norton Identity Safe\Norton Error Analyzer => C:\Program Files (x86)\Norton Identity Safe\Engine\2013.4.0.10\SymErr.exe [2013-05-30] (Symantec Corporation)
Task: {F9EA1DA9-56D5-445E-802A-CF6A53D7D2AD} - System32\Tasks\4564 => Wscript.exe C:\Users\Anke\AppData\Local\Temp\launchie.vbs //B <==== ACHTUNG
Task: {FDE8C8B9-9835-4E12-9A30-35C734958085} - \Microsoft\Windows\Setup\gwx\refreshgwxconfig -> Keine Datei <==== ACHTUNG
Task: {FEA3078A-9A2E-4D6A-9D0A-F4C0FC39ABAD} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2015-08-27] (Google Inc.)
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird die Aufgabe verschoben. Die Datei, die durch die Aufgabe gestartet wird, wird nicht verschoben.)
Task: C:\WINDOWS\Tasks\Adobe Flash Player Updater.job => C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
Task: C:\WINDOWS\Tasks\DropboxUpdateTaskMachineCore.job => C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe
Task: C:\WINDOWS\Tasks\DropboxUpdateTaskMachineUA.job => C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe
Task: C:\WINDOWS\Tasks\GoogleUpdateTaskMachineCore.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
Task: C:\WINDOWS\Tasks\GoogleUpdateTaskMachineUA.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
==================== Verknüpfungen =============================
(Die Einträge können gelistet werden, um sie zurückzusetzen oder zu entfernen.)
Shortcut: C:\Users\Anke\Desktop\Favorites\NCH Audio and Telephony Software.lnk -> hxxp://www.nch.com.au/index.html (Keine Datei)
Shortcut: C:\Users\Anke\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Search.lnk -> hxxp://feed.helperbar.com/?publisher=YahooOC&dpid=YahooOC&co=DE&userid=7debccca-1e8b-cf3b-8a14-f5a82a2620a2&searchtype=sc&fr=linkury-tb&installDate=11/07/2014&barcodeid=1262&um=0&type=hp1000IC:\Users\Anke\AppData\Local\Smartbar\Application\SmartbarShortcutIcon.ico (Keine Datei)
==================== Geladene Module (Nicht auf der Ausnahmeliste) ==============
2015-10-30 09:18 - 2015-10-30 09:18 - 00185856 _____ () C:\WINDOWS\SYSTEM32\ism32k.dll
2015-12-23 05:19 - 2015-08-07 02:24 - 00116344 _____ () C:\Program Files\NVIDIA Corporation\Display\NvSmartMax64.dll
2014-12-22 10:18 - 2014-12-22 10:18 - 00029184 _____ () C:\WINDOWS\System32\ssj2mlm.dll
2016-03-18 23:56 - 2016-03-18 23:56 - 00092472 _____ () C:\Program Files\Common Files\Apple\Apple Application Support\zlib1.dll
2016-04-22 01:07 - 2016-04-22 01:07 - 01337144 _____ () C:\Program Files\Common Files\Apple\Apple Application Support\libxml2.dll
2013-08-14 16:19 - 2013-08-14 16:19 - 00039056 _____ () C:\Program Files (x86)\RealNetworks\RealDownloader\rndlresolversvc.exe
2015-06-25 07:53 - 2015-06-25 07:53 - 00699704 _____ () C:\Program Files (x86)\TuneUp Utilities 2014\avgrepliba.dll
2013-04-30 05:47 - 2013-04-30 05:47 - 00248704 _____ () C:\Program Files (x86)\Synology\Assistant\UsbClientService.exe
2016-05-02 17:58 - 2016-03-29 12:20 - 02656952 _____ () C:\WINDOWS\system32\CoreUIComponents.dll
2016-05-02 09:11 - 2016-05-02 09:14 - 00144384 _____ () C:\Program Files\WindowsApps\Microsoft.Messaging_2.15.20002.0_x86__8wekyb3d8bbwe\SkypeHost.exe
2016-05-02 17:58 - 2016-03-29 12:20 - 02656952 _____ () C:\WINDOWS\System32\CoreUIComponents.dll
2016-02-10 21:45 - 2016-02-10 21:45 - 00052912 _____ () C:\Program Files\FileZilla FTP Client\fzshellext_64.dll
2016-05-14 19:38 - 2016-05-14 19:38 - 00959168 _____ () C:\Users\Anke\AppData\Local\Microsoft\OneDrive\17.3.6390.0509\amd64\ClientTelemetry.dll
2013-09-05 00:17 - 2013-09-05 00:17 - 04300456 _____ () C:\Program Files\Common Files\microsoft shared\OFFICE14\Cultures\OFFICE.ODF
2015-12-22 12:51 - 2015-02-27 15:38 - 00721263 _____ () C:\WINDOWS\SysWOW64\ISCM64.dll
2015-12-23 17:41 - 2015-12-07 06:14 - 00093696 _____ () C:\Windows\SystemApps\ShellExperienceHost_cw5n1h2txyewy\Windows.UI.Shell.SharedUtilities.dll
2016-05-11 11:13 - 2016-04-23 06:25 - 00472064 _____ () C:\Windows\SystemApps\ShellExperienceHost_cw5n1h2txyewy\QuickActions.dll
2016-06-15 14:16 - 2016-05-28 05:59 - 07992832 _____ () C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\CortanaApi.dll
2016-06-15 14:16 - 2016-05-28 05:53 - 00591360 _____ () C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\Cortana.Core.dll
2016-06-15 14:16 - 2016-05-28 05:54 - 02483200 _____ () C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\Cortana.BackgroundTask.dll
2016-06-15 14:16 - 2016-05-28 05:56 - 04089856 _____ () C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\RemindersUI.dll
2015-06-08 14:12 - 2015-06-08 14:12 - 00019816 _____ () C:\Program Files (x86)\Lavasoft\Web Companion\Application\Lavasoft.SearchProtect.WinService.exe
2015-06-08 14:12 - 2015-06-08 14:12 - 00012144 _____ () C:\Program Files (x86)\Lavasoft\Web Companion\Application\Lavasoft.SearchProtect.Service.Logger.dll
2015-06-08 14:12 - 2015-06-08 14:12 - 00034664 _____ () C:\Program Files (x86)\Lavasoft\Web Companion\Application\Lavasoft.SearchProtect.WcfService.dll
2014-08-01 10:41 - 2011-01-13 11:44 - 00232800 _____ () C:\Program Files (x86)\StarMoney 9.0\ouservice\PATCHW32.dll
2013-07-24 18:24 - 2011-01-13 10:44 - 00232800 _____ () C:\Program Files (x86)\StarMoney 8.0\ouservice\PATCHW32.dll
2012-11-23 15:34 - 2012-11-23 15:34 - 00035200 _____ () C:\Program Files (x86)\ASUS\ASUS MultiFrame\HookTitle.dll
2015-05-18 21:32 - 2015-05-01 18:52 - 00011920 _____ () C:\Program Files (x86)\NVIDIA Corporation\Update Core\detoured.dll
2016-05-02 09:11 - 2016-05-02 09:14 - 00141312 _____ () C:\Program Files\WindowsApps\Microsoft.Messaging_2.15.20002.0_x86__8wekyb3d8bbwe\SkypeBackgroundTasks.dll
2016-05-02 09:11 - 2016-05-02 09:14 - 22284800 _____ () C:\Program Files\WindowsApps\Microsoft.Messaging_2.15.20002.0_x86__8wekyb3d8bbwe\SkyWrap.dll
2016-05-14 19:38 - 2016-05-14 19:38 - 00679624 _____ () C:\Users\Anke\AppData\Local\Microsoft\OneDrive\17.3.6390.0509\ClientTelemetry.dll
2015-12-22 12:52 - 2014-10-31 17:40 - 01498112 _____ () C:\Program Files (x86)\Common Files\iSkysoft\iSkysoft Helper Compact\DAQExp.dll
2015-12-22 12:52 - 2014-05-19 18:19 - 00137728 _____ () C:\Program Files (x86)\Common Files\iSkysoft\iSkysoft Helper Compact\CBSCreateVC.dll
2013-02-12 20:48 - 2013-01-14 20:25 - 01200088 ____R () C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\ACE.dll
2013-02-12 20:52 - 2012-07-12 11:30 - 00030472 _____ () C:\Program Files (x86)\Intel\Intel(R) Small Business Advantage\Service\ProcessPrivileges.dll
2013-02-12 20:52 - 2012-07-12 11:30 - 00215304 _____ () C:\Program Files (x86)\Intel\Intel(R) Small Business Advantage\Service\System.ComponentModel.Composition.dll
2013-02-12 20:52 - 2012-07-12 11:30 - 00051464 _____ () C:\Program Files (x86)\Intel\Intel(R) Small Business Advantage\Service\Interop.TaskScheduler.dll
2013-09-05 00:14 - 2013-09-05 00:14 - 04300456 _____ () C:\Program Files (x86)\Common Files\Microsoft Shared\office14\Cultures\office.odf
==================== Alternate Data Streams (Nicht auf der Ausnahmeliste) =========
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird nur der ADS entfernt.)
AlternateDataStreams: C:\Users\Gast\.DS_Store:AFP_AfpInfo [122]
==================== Abgesicherter Modus (Nicht auf der Ausnahmeliste) ===================
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Der Wert "AlternateShell" wird wiederhergestellt.)
==================== Verknüpfungen (Nicht auf der Ausnahmeliste) ===============
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird der Registryeintrag auf den Standardwert zurückgesetzt oder entfernt.)
==================== Internet Explorer Vertrauenswürdig/Eingeschränkt ===============
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt.)
IE trusted site: HKU\S-1-5-21-2048645361-787621775-3992761592-1002\...\localhost -> localhost
IE trusted site: HKU\S-1-5-21-2048645361-787621775-3992761592-1002\...\webcompanion.com -> hxxp://webcompanion.com
==================== Hosts Inhalt: ===============================
(Wenn benötigt kann der Hosts: Schalter in die Fixlist aufgenommen werden um die Hosts Datei zurückzusetzen.)
2009-07-14 04:34 - 2009-06-10 23:00 - 00000824 ____A C:\WINDOWS\system32\Drivers\etc\hosts
==================== Andere Bereiche ============================
(Aktuell gibt es keinen automatisierten Fix für diesen Bereich.)
HKU\S-1-5-21-2048645361-787621775-3992761592-1002\Control Panel\Desktop\\Wallpaper -> D:\Anke\Pictures\Katzen\Lilly.JPG
DNS Servers: 192.168.178.1
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 5) (ConsentPromptBehaviorUser: 3) (EnableLUA: 1)
Windows Firewall ist aktiviert.
==================== MSCONFIG/TASK MANAGER Deaktivierte Einträge ==
(Aktuell gibt es keinen automatisierten Fix für diesen Bereich.)
HKLM\...\StartupApproved\StartupFolder: => "honestech Audio Recorder 2.0 Deluxe Launcher.lnk"
HKLM\...\StartupApproved\Run: => "Logitech Download Assistant"
HKLM\...\StartupApproved\Run: => "iTunesHelper"
HKLM\...\StartupApproved\Run32: => "APSDaemon"
HKLM\...\StartupApproved\Run32: => "PrintArtist"
HKLM\...\StartupApproved\Run32: => "FUFAXSTM"
HKLM\...\StartupApproved\Run32: => "PMSpeed"
HKLM\...\StartupApproved\Run32: => "PDFPrint"
HKU\S-1-5-21-2048645361-787621775-3992761592-1002\...\StartupApproved\Run: => "Scan Buttons"
HKU\S-1-5-21-2048645361-787621775-3992761592-1002\...\StartupApproved\Run: => "Driver Mender"
HKU\S-1-5-21-2048645361-787621775-3992761592-1002\...\StartupApproved\Run: => "Amazon Music"
HKU\S-1-5-21-2048645361-787621775-3992761592-1002\...\StartupApproved\Run: => "GarminExpressTrayApp"
HKU\S-1-5-21-2048645361-787621775-3992761592-1002\...\StartupApproved\Run: => "Web Companion"
HKU\S-1-5-21-2048645361-787621775-3992761592-1002\...\StartupApproved\Run: => "Snip"
==================== Firewall Regeln (Nicht auf der Ausnahmeliste) ===============
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)
FirewallRules: [vm-monitoring-nb-session] => (Allow) LPort=139
FirewallRules: [MSMQ-In-TCP] => (Allow) %systemroot%\system32\mqsvc.exe
FirewallRules: [MSMQ-Out-TCP] => (Allow) %systemroot%\system32\mqsvc.exe
FirewallRules: [MSMQ-In-UDP] => (Allow) %systemroot%\system32\mqsvc.exe
FirewallRules: [MSMQ-Out-UDP] => (Allow) %systemroot%\system32\mqsvc.exe
FirewallRules: [WCF-NetTcpActivator-In-TCP-64bit] => (Allow) LPort=808
FirewallRules: [{AE177D54-5305-4AED-A3E6-BCDFCFD7BB6B}] => (Allow) C:\Program Files (x86)\Bonjour\mDNSResponder.exe
FirewallRules: [{6C377694-2FFD-4F51-9456-E32D564F8608}] => (Allow) C:\Program Files (x86)\Bonjour\mDNSResponder.exe
FirewallRules: [{8A6ADCDA-FA4A-4005-8210-C66D13E680F5}] => (Allow) C:\Program Files\Bonjour\mDNSResponder.exe
FirewallRules: [{F79B6474-F9D5-4706-AFFC-DE94C425B21D}] => (Allow) C:\Program Files\Bonjour\mDNSResponder.exe
FirewallRules: [TCP Query User{89D8E905-47D0-4736-9202-B0116C7A6C06}C:\program files (x86)\synology\assistant\dsassistant.exe] => (Allow) C:\program files (x86)\synology\assistant\dsassistant.exe
FirewallRules: [UDP Query User{E999F624-2FEF-4328-A446-1B45FC1F0724}C:\program files (x86)\synology\assistant\dsassistant.exe] => (Allow) C:\program files (x86)\synology\assistant\dsassistant.exe
FirewallRules: [{6110DB03-ED80-4ECB-BF5E-C2EC4CC48CE9}] => (Allow) C:\Program Files (x86)\StarMoney 8.0\ouservice\StarMoneyOnlineUpdate.exe
FirewallRules: [{02598B78-AA7F-4F26-A479-4DC484F9D53A}] => (Allow) C:\Program Files (x86)\StarMoney 8.0\ouservice\StarMoneyOnlineUpdate.exe
FirewallRules: [{E2AFC150-F9CC-41B3-8BC0-CC519391C49B}] => (Allow) C:\Program Files (x86)\StarMoney 8.0\app\StarMoney.exe
FirewallRules: [{ADB99DC3-3033-4A43-BAB7-CE5637391164}] => (Allow) C:\Program Files (x86)\StarMoney 8.0\app\StarMoney.exe
FirewallRules: [{F993C092-AD38-444A-BA51-383225B01644}] => (Allow) LPort=35722
FirewallRules: [{255EEE07-5E48-447D-904F-B42E582C353B}] => (Allow) C:\Program Files (x86)\Nero\KM\KwikMedia.exe
FirewallRules: [{85D3092D-EE1D-48F4-809B-7ECE8CD23AC7}] => (Allow) C:\Program Files (x86)\Nero\KM\KwikMedia.exe
FirewallRules: [{8EA8C5ED-9FDC-410F-A3F2-9CE368D957EB}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe
FirewallRules: [{E0B764ED-AC4F-4ED1-B75D-4CCEC3F22613}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe
FirewallRules: [{6823160C-5DA4-407F-85BB-882F0B30E092}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamer.exe
FirewallRules: [{EA148925-C8A7-4277-8B17-A579ED813265}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamer.exe
FirewallRules: [{D02078E2-6E4D-4B02-AC48-3E45520BC6B4}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe
FirewallRules: [{1EDD5D6D-47D7-4EEA-B387-2B9A952FBC0C}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe
FirewallRules: [{414AFBB9-41FE-4F9E-8883-558421DC23EB}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamer.exe
FirewallRules: [{CDE7DD9A-519B-4944-A487-DDD634E1C2F2}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamer.exe
FirewallRules: [{92F7E667-A799-4159-B8A6-285A6AEABAF4}] => (Allow) C:\Program Files (x86)\Winamp\winamp.exe
FirewallRules: [{C7E775C1-5C42-456B-884E-7583983D5BF5}] => (Allow) C:\Program Files (x86)\Winamp\winamp.exe
FirewallRules: [{FD55B1DD-AAC5-4FBF-BD2B-0C522C818E79}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe
FirewallRules: [{266F7007-C3D4-488A-BD96-C6A65EFBA8A7}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe
FirewallRules: [{46BBE7F1-AFAD-4F65-B748-56B44613B378}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamer.exe
FirewallRules: [{4559199D-8FF8-475B-B7BF-FF1C1015FB4A}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamer.exe
FirewallRules: [{036C723A-BA41-4800-879B-93306F898F3B}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe
FirewallRules: [{BED93407-22A1-4BE0-94EC-13D353D32BC7}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe
FirewallRules: [{266454F7-E8FF-4E8C-AAE6-6755491D8209}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamer.exe
FirewallRules: [{90EE4874-D159-4D2A-A0F5-FC8EBF2F0F78}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamer.exe
FirewallRules: [{A2ACD595-0CE7-4573-A397-B2F2336F7547}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe
FirewallRules: [{00A0CC22-986F-4ADD-8807-CA45072C8815}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe
FirewallRules: [{6ABD0499-91D1-4EB3-A585-BEEF3F215933}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamer.exe
FirewallRules: [{EE204CC5-58A9-4307-931A-2CAD1895929A}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamer.exe
FirewallRules: [{671674E3-7301-4045-BEC4-A120CC24585A}] => (Allow) C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe
FirewallRules: [{C7121F8B-B033-4ADC-AD97-4CA846DD0E92}] => (Allow) C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe
FirewallRules: [{74102007-4D5E-4576-A065-583CB321012F}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe
FirewallRules: [{67292FFA-417D-486E-A5E0-4FB004D1C524}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe
FirewallRules: [{51A9396A-EBAA-4DFA-96F6-EB56C204972F}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamer.exe
FirewallRules: [{A2444151-9FCA-4996-85AB-E328F80BC24B}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamer.exe
FirewallRules: [TCP Query User{B092401A-1098-4934-94D8-8F6437A2220A}C:\program files (x86)\eye-fi\helper\eyefihelper.exe] => (Allow) C:\program files (x86)\eye-fi\helper\eyefihelper.exe
FirewallRules: [UDP Query User{CF3D9BD7-31A8-4D1B-8A96-C141BC0D8BAC}C:\program files (x86)\eye-fi\helper\eyefihelper.exe] => (Allow) C:\program files (x86)\eye-fi\helper\eyefihelper.exe
FirewallRules: [TCP Query User{AC4BBC63-9634-4EFC-A735-C06628E444CA}C:\program files (x86)\eye-fi\helper\eyefihelper.exe] => (Allow) C:\program files (x86)\eye-fi\helper\eyefihelper.exe
FirewallRules: [UDP Query User{169972CC-64EA-4D81-BDEB-6282FB9A2DCA}C:\program files (x86)\eye-fi\helper\eyefihelper.exe] => (Allow) C:\program files (x86)\eye-fi\helper\eyefihelper.exe
FirewallRules: [{88D9B36A-A306-4635-9846-6BFD0A67FF42}] => (Allow) C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe
FirewallRules: [{191C76E8-A62D-4C7F-B9A4-8CB64E4AC5DB}] => (Allow) C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe
FirewallRules: [{36247485-4A3F-4D70-B63E-E2CBBFE784BC}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe
FirewallRules: [{D961B1D3-673B-431A-ABAD-DDCCBDCBEB6F}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe
FirewallRules: [{73A5C7ED-E25E-40F8-90BE-1BC9110D1546}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamer.exe
FirewallRules: [{43431EBB-37D7-4865-AB6C-15030C44AF72}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamer.exe
FirewallRules: [{5B7C46EF-D21E-49D0-A4F0-0062180D575D}] => (Allow) E:\Network\EpsonNetSetup\ENEasyApp.exe
FirewallRules: [{5DFE8991-154F-4EE8-BD47-A374E5E2E3EE}] => (Allow) E:\Network\EpsonNetSetup\ENEasyApp.exe
FirewallRules: [TCP Query User{4E7D2612-7E54-4773-B8AC-B5F044B65C30}C:\program files (x86)\epson software\event manager\eeventmanager.exe] => (Allow) C:\program files (x86)\epson software\event manager\eeventmanager.exe
FirewallRules: [UDP Query User{692CC46A-29F5-4B4B-9972-7E12BF759DC9}C:\program files (x86)\epson software\event manager\eeventmanager.exe] => (Allow) C:\program files (x86)\epson software\event manager\eeventmanager.exe
FirewallRules: [{8EE8AF2E-D6ED-4062-86BD-734EE53FF3E4}] => (Allow) C:\Program Files (x86)\NewSoft\Presto! PageManager 9.03\LicenseCheck.exe
FirewallRules: [{C552C0AC-AF4D-4D0A-ADDC-833AD39CD3CB}] => (Allow) C:\Program Files (x86)\NewSoft\Presto! PageManager 9.03\LicenseCheck.exe
FirewallRules: [TCP Query User{76F4D5A1-2A0F-468A-B7C9-2C08413230FE}C:\program files (x86)\epson software\event manager\eeventmanager.exe] => (Allow) C:\program files (x86)\epson software\event manager\eeventmanager.exe
FirewallRules: [UDP Query User{153D76D3-BD4D-44C7-807D-5ED045CEE977}C:\program files (x86)\epson software\event manager\eeventmanager.exe] => (Allow) C:\program files (x86)\epson software\event manager\eeventmanager.exe
FirewallRules: [{1EAFE537-1847-41BE-BF71-E713BB39E5DA}] => (Allow) C:\Program Files (x86)\Epson Software\ECPrinterSetup\ENPApp.exe
FirewallRules: [{7985E773-048A-441D-A10F-88020EEC5CE8}] => (Allow) C:\Program Files (x86)\Epson Software\ECPrinterSetup\ENPApp.exe
FirewallRules: [{B13629AD-0AFB-4777-8797-EEFE21E4016D}] => (Allow) C:\Program Files (x86)\StarMoney 9.0\ouservice\StarMoneyOnlineUpdate.exe
FirewallRules: [{1AA1A33E-BFCE-4D18-A4C5-84EC7A11EFFB}] => (Allow) C:\Program Files (x86)\StarMoney 9.0\ouservice\StarMoneyOnlineUpdate.exe
FirewallRules: [{9986A326-6B3F-4B9B-80AE-43D93C760D78}] => (Allow) C:\Program Files (x86)\StarMoney 9.0\app\StarMoney.exe
FirewallRules: [{5C321E51-2B9D-4A37-8896-EDF9C6ACEE37}] => (Allow) C:\Program Files (x86)\StarMoney 9.0\app\StarMoney.exe
FirewallRules: [{8CA60266-A371-40C1-ABC4-6213B27ADD1F}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamNetworkService.exe
FirewallRules: [{44A957B4-64A7-460C-8681-163B9EA24851}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamNetworkService.exe
FirewallRules: [{270F7CE3-E7C7-4C5F-9A13-F8EA8563E2F7}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamer.exe
FirewallRules: [{2B3F7D0C-6AB8-4D13-A1FB-15DA998162DA}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamer.exe
FirewallRules: [{D148E326-7CF7-4709-A2F2-85634CBD9005}] => (Allow) C:\Program Files (x86)\TeamViewer\Version9\TeamViewer.exe
FirewallRules: [{F3140418-6E15-4DB7-B3AB-F5BDBBADBF22}] => (Allow) C:\Program Files (x86)\TeamViewer\Version9\TeamViewer.exe
FirewallRules: [{6C12BE38-B230-4DD7-90DA-F6AF59A14E19}] => (Allow) C:\Program Files (x86)\TeamViewer\Version9\TeamViewer_Service.exe
FirewallRules: [{9BF5F75C-D9EB-448F-A8AB-396C3CD9BCBB}] => (Allow) C:\Program Files (x86)\TeamViewer\Version9\TeamViewer_Service.exe
FirewallRules: [{563A9A9F-259E-4249-882A-D4F7A707BBCE}] => (Allow) C:\Users\Anke\AppData\Local\Apps\2.0\MEAYH2Q7.P65\B8A1B7Q5.VJA\frit..tion_1acae14e4778b8d2_0002.0003_6dcb4a48ddb2ee39\fritzbox-usb-fernanschluss.exe
FirewallRules: [{78F75274-ED04-4B18-9C23-A1AB1B23428B}] => (Allow) C:\Users\Anke\AppData\Local\Apps\2.0\MEAYH2Q7.P65\B8A1B7Q5.VJA\frit..tion_1acae14e4778b8d2_0002.0003_6dcb4a48ddb2ee39\fritzbox-usb-fernanschluss.exe
FirewallRules: [TCP Query User{27175DD9-9F1C-47D8-893B-2E42F0F1186C}C:\windows\explorer.exe] => (Allow) C:\windows\explorer.exe
FirewallRules: [UDP Query User{6B7BAF49-3122-4B08-BB1C-6813FA3CFEE2}C:\windows\explorer.exe] => (Allow) C:\windows\explorer.exe
FirewallRules: [{62C8352A-F2F1-4544-A505-B413104FE81F}] => (Allow) C:\Program Files (x86)\Mozilla Firefox\firefox.exe
FirewallRules: [{2B8D0B63-5A00-4994-BE49-CC0CE4952090}] => (Allow) C:\Program Files (x86)\Mozilla Firefox\firefox.exe
FirewallRules: [{580C99A9-C3D2-4957-9A79-B179837A2F48}] => (Allow) C:\Program Files (x86)\Windows Live\Contacts\wlcomm.exe
FirewallRules: [{96CB1E7C-9B9A-418A-AE7B-F999D369DE8B}] => (Allow) LPort=2869
FirewallRules: [{908EAEDF-8FD0-4D18-9AEA-4FE4D297CAF6}] => (Allow) LPort=1900
FirewallRules: [TCP Query User{655C4B62-50CC-4C24-A768-40D743F3CD94}C:\program files (x86)\synology\assistant\dsassistant.exe] => (Allow) C:\program files (x86)\synology\assistant\dsassistant.exe
FirewallRules: [UDP Query User{E6649DEF-32E3-466C-8891-E0B8D445938E}C:\program files (x86)\synology\assistant\dsassistant.exe] => (Allow) C:\program files (x86)\synology\assistant\dsassistant.exe
FirewallRules: [{E9810508-D1DC-42C5-B02A-38A662225810}] => (Allow) C:\Program Files (x86)\Skype\Phone\Skype.exe
FirewallRules: [{28941304-DB7A-439F-BF25-D24FA9276ECA}] => (Allow) C:\Program Files\Lexmark ScanBack\scanwiz.exe
FirewallRules: [{7A91E50A-34F4-42F1-94F6-E402599C6BD2}] => (Allow) C:\Program Files\Lexmark ScanBack\scanwiz.exe
FirewallRules: [{AAD13A5C-F8ED-4224-82DD-52C91CBF33F7}] => (Allow) C:\Program Files\iTunes\iTunes.exe
FirewallRules: [{D3D1680C-22A0-4BF2-9CB3-1AA3A5DD3419}] => (Allow) C:\Program Files (x86)\Dropbox\Client\Dropbox.exe
DomainProfile\AuthorizedApplications: [C:\Program Files (x86)\Logitech\Logitech Harmony Remote Software 7\HarmonyRemote.exe] => Enabled:Logitech Harmony Remote Software 7
StandardProfile\AuthorizedApplications: [C:\Program Files (x86)\Logitech\Logitech Harmony Remote Software 7\HarmonyRemote.exe] => Enabled:Logitech Harmony Remote Software 7
StandardProfile\AuthorizedApplications: [C:\Users\Anke\AppData\Local\Temp\vbc.exe] => Enabled:Windows Messanger
StandardProfile\AuthorizedApplications: [C:\Users\Anke\AppData\Roaming\tasking.exe] => Enabled:Windows Messanger
==================== Wiederherstellungspunkte =========================
ACHTUNG: Systemwiederherstellung ist deaktiviert
==================== Fehlerhafte Geräte im Gerätemanager =============
Name: AVM USB-Fernanschluss
Description: AVM USB-Fernanschluss
Class Guid: {59e75f1d-160e-4aba-bb5c-1c179b8e9b7a}
Manufacturer: AVM Berlin
Service: avmaura
Problem: : This device is not working properly because Windows cannot load the drivers required for this device. (Code 31)
Resolution: Update the driver
Name: AVM USB-Fernanschluss
Description: AVM USB-Fernanschluss
Class Guid: {59e75f1d-160e-4aba-bb5c-1c179b8e9b7a}
Manufacturer: AVM Berlin
Service: avmaura
Problem: : This device is not working properly because Windows cannot load the drivers required for this device. (Code 31)
Resolution: Update the driver
Name: AVM USB-Fernanschluss
Description: AVM USB-Fernanschluss
Class Guid: {59e75f1d-160e-4aba-bb5c-1c179b8e9b7a}
Manufacturer: AVM Berlin
Service: avmaura
Problem: : This device is not working properly because Windows cannot load the drivers required for this device. (Code 31)
Resolution: Update the driver
Name: AVM USB-Fernanschluss
Description: AVM USB-Fernanschluss
Class Guid: {59e75f1d-160e-4aba-bb5c-1c179b8e9b7a}
Manufacturer: AVM Berlin
Service: avmaura
Problem: : This device is not working properly because Windows cannot load the drivers required for this device. (Code 31)
Resolution: Update the driver
Name: AVM USB-Fernanschluss
Description: AVM USB-Fernanschluss
Class Guid: {59e75f1d-160e-4aba-bb5c-1c179b8e9b7a}
Manufacturer: AVM Berlin
Service: avmaura
Problem: : This device is not working properly because Windows cannot load the drivers required for this device. (Code 31)
Resolution: Update the driver
Name: AVM Audio
Description: AVM Audio
Class Guid: {5f87e721-8ba2-4307-aede-1135fcf04a80}
Manufacturer: AVM Berlin
Service: avmaudio
Problem: : This device is not working properly because Windows cannot load the drivers required for this device. (Code 31)
Resolution: Update the driver
Name: AVM Audio
Description: AVM Audio
Class Guid: {5f87e721-8ba2-4307-aede-1135fcf04a80}
Manufacturer: AVM Berlin
Service: avmaudio
Problem: : This device is not working properly because Windows cannot load the drivers required for this device. (Code 31)
Resolution: Update the driver
Name: AVM Audio
Description: AVM Audio
Class Guid: {5f87e721-8ba2-4307-aede-1135fcf04a80}
Manufacturer: AVM Berlin
Service: avmaudio
Problem: : This device is not working properly because Windows cannot load the drivers required for this device. (Code 31)
Resolution: Update the driver
Name: AVM Audio
Description: AVM Audio
Class Guid: {5f87e721-8ba2-4307-aede-1135fcf04a80}
Manufacturer: AVM Berlin
Service: avmaudio
Problem: : This device is not working properly because Windows cannot load the drivers required for this device. (Code 31)
Resolution: Update the driver
Name: AVM Audio
Description: AVM Audio
Class Guid: {5f87e721-8ba2-4307-aede-1135fcf04a80}
Manufacturer: AVM Berlin
Service: avmaudio
Problem: : This device is not working properly because Windows cannot load the drivers required for this device. (Code 31)
Resolution: Update the driver
==================== Fehlereinträge in der Ereignisanzeige: =========================
Applikationsfehler:
==================
Error: (07/02/2016 11:01:16 AM) (Source: Application Error) (EventID: 1000) (User: )
Description: Name der fehlerhaften Anwendung: APSDaemon.exe, Version: 2.4.8.4, Zeitstempel: 0x5719bb27
Name des fehlerhaften Moduls: APSDaemon_main.dll, Version: 2.4.8.4, Zeitstempel: 0x5719bbcd
Ausnahmecode: 0xc0000005
Fehleroffset: 0x00002a6d
ID des fehlerhaften Prozesses: 0x4a4
Startzeit der fehlerhaften Anwendung: 0xAPSDaemon.exe0
Pfad der fehlerhaften Anwendung: APSDaemon.exe1
Pfad des fehlerhaften Moduls: APSDaemon.exe2
Berichtskennung: APSDaemon.exe3
Vollständiger Name des fehlerhaften Pakets: APSDaemon.exe4
Anwendungs-ID, die relativ zum fehlerhaften Paket ist: APSDaemon.exe5
Error: (07/02/2016 10:58:26 AM) (Source: SideBySide) (EventID: 33) (User: )
Description: Fehler beim Generieren des Aktivierungskontextes für "rpshellextension.1.0,language="*",type="win32",version="1.0.0.0"1".
Die abhängige Assemblierung "rpshellextension.1.0,language="*",type="win32",version="1.0.0.0"" konnte nicht gefunden werden.
Verwenden Sie für eine detaillierte Diagnose das Programm "sxstrace.exe".
Error: (07/01/2016 06:18:09 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Name der fehlerhaften Anwendung: IEXPLORE.EXE, Version: 11.0.10586.420, Zeitstempel: 0x57491b4f
Name des fehlerhaften Moduls: MSHTML.dll, Version: 11.0.10586.420, Zeitstempel: 0x57491b86
Ausnahmecode: 0xc00000fd
Fehleroffset: 0x0049bccb
ID des fehlerhaften Prozesses: 0x3384
Startzeit der fehlerhaften Anwendung: 0xIEXPLORE.EXE0
Pfad der fehlerhaften Anwendung: IEXPLORE.EXE1
Pfad des fehlerhaften Moduls: IEXPLORE.EXE2
Berichtskennung: IEXPLORE.EXE3
Vollständiger Name des fehlerhaften Pakets: IEXPLORE.EXE4
Anwendungs-ID, die relativ zum fehlerhaften Paket ist: IEXPLORE.EXE5
Error: (07/01/2016 10:53:34 AM) (Source: SideBySide) (EventID: 33) (User: )
Description: Fehler beim Generieren des Aktivierungskontextes für "rpshellextension.1.0,language="*",type="win32",version="1.0.0.0"1".
Die abhängige Assemblierung "rpshellextension.1.0,language="*",type="win32",version="1.0.0.0"" konnte nicht gefunden werden.
Verwenden Sie für eine detaillierte Diagnose das Programm "sxstrace.exe".
Error: (07/01/2016 03:51:17 AM) (Source: Microsoft-Windows-Immersive-Shell) (EventID: 5973) (User: Anke-PC)
Description: Bei der Aktivierung der App „Microsoft.Windows.ContentDeliveryManager_cw5n1h2txyewy!App“ ist folgender Fehler aufgetreten: -2144927141. Weitere Informationen finden Sie im Protokoll „Microsoft-Windows-TWinUI/Betriebsbereit“.
Error: (07/01/2016 02:34:16 AM) (Source: Application Error) (EventID: 1000) (User: )
Description: Name der fehlerhaften Anwendung: APSDaemon.exe, Version: 2.4.8.4, Zeitstempel: 0x5719bb27
Name des fehlerhaften Moduls: APSDaemon_main.dll, Version: 2.4.8.4, Zeitstempel: 0x5719bbcd
Ausnahmecode: 0xc0000005
Fehleroffset: 0x00002a6d
ID des fehlerhaften Prozesses: 0x3158
Startzeit der fehlerhaften Anwendung: 0xAPSDaemon.exe0
Pfad der fehlerhaften Anwendung: APSDaemon.exe1
Pfad des fehlerhaften Moduls: APSDaemon.exe2
Berichtskennung: APSDaemon.exe3
Vollständiger Name des fehlerhaften Pakets: APSDaemon.exe4
Anwendungs-ID, die relativ zum fehlerhaften Paket ist: APSDaemon.exe5
Error: (07/01/2016 12:15:00 AM) (Source: Bonjour Service) (EventID: 100) (User: )
Description: mDNSCoreReceiveResponse: Ignoring response received before we even began probing: 21 Ankes\032Mediathek._home-sharing._tcp.local. SRV 0 0 3689 Anke-PC.local.
Error: (07/01/2016 12:15:00 AM) (Source: Bonjour Service) (EventID: 100) (User: )
Description: mDNSCoreReceiveResponse: Ignoring response received before we even began probing: 21 Ankes\032Mediathek._home-sharing._tcp.local. SRV 0 0 3689 Anke-PC.local.
Error: (07/01/2016 12:14:57 AM) (Source: Application Error) (EventID: 1000) (User: )
Description: Name der fehlerhaften Anwendung: APSDaemon.exe, Version: 2.4.8.4, Zeitstempel: 0x5719bb27
Name des fehlerhaften Moduls: APSDaemon_main.dll, Version: 2.4.8.4, Zeitstempel: 0x5719bbcd
Ausnahmecode: 0xc0000005
Fehleroffset: 0x00002a6d
ID des fehlerhaften Prozesses: 0xa3c
Startzeit der fehlerhaften Anwendung: 0xAPSDaemon.exe0
Pfad der fehlerhaften Anwendung: APSDaemon.exe1
Pfad des fehlerhaften Moduls: APSDaemon.exe2
Berichtskennung: APSDaemon.exe3
Vollständiger Name des fehlerhaften Pakets: APSDaemon.exe4
Anwendungs-ID, die relativ zum fehlerhaften Paket ist: APSDaemon.exe5
Error: (06/30/2016 12:39:30 PM) (Source: SideBySide) (EventID: 33) (User: )
Description: Fehler beim Generieren des Aktivierungskontextes für "rpshellextension.1.0,language="*",type="win32",version="1.0.0.0"1".
Die abhängige Assemblierung "rpshellextension.1.0,language="*",type="win32",version="1.0.0.0"" konnte nicht gefunden werden.
Verwenden Sie für eine detaillierte Diagnose das Programm "sxstrace.exe".
Systemfehler:
=============
Error: (07/02/2016 10:43:35 AM) (Source: Service Control Manager) (EventID: 7031) (User: )
Description: Der Dienst "IE Search Set" wurde unerwartet beendet. Dies ist bereits 1 Mal vorgekommen. Folgende Korrekturmaßnahmen werden in 60000 Millisekunden durchgeführt: Neustart des Diensts.
Error: (07/02/2016 10:43:23 AM) (Source: Service Control Manager) (EventID: 7001) (User: )
Description: Der Dienst "NetTcpActivator" ist vom Dienst "NetTcpPortSharing" abhängig, der aufgrund folgenden Fehlers nicht gestartet wurde:
%%1058 = Der angegebene Dienst kann nicht gestartet werden. Er ist deaktiviert oder nicht mit aktivierten Geräten verbunden.
Error: (07/02/2016 10:43:20 AM) (Source: Service Control Manager) (EventID: 7000) (User: )
Description: Der Dienst "UxTuneUp" wurde aufgrund folgenden Fehlers nicht gestartet:
%%1083 = In dem ausführbaren Programm, in dem der Dienst ausgeführt wird, ist der Dienst nicht implementiert.
Error: (07/02/2016 10:43:13 AM) (Source: avmaudio) (EventID: 4012) (User: )
Description: AURA
Error: (07/02/2016 10:43:13 AM) (Source: avmaudio) (EventID: 4012) (User: )
Description: AURA
Error: (07/02/2016 10:43:13 AM) (Source: avmaudio) (EventID: 4012) (User: )
Description: AURA
Error: (07/02/2016 10:43:13 AM) (Source: avmaudio) (EventID: 4012) (User: )
Description: AURA
Error: (07/02/2016 10:43:13 AM) (Source: avmaudio) (EventID: 4012) (User: )
Description: AURA
Error: (07/02/2016 10:43:13 AM) (Source: avmaura) (EventID: 4012) (User: )
Description: AURA
Error: (07/02/2016 10:43:13 AM) (Source: avmaura) (EventID: 4012) (User: )
Description: AURA
CodeIntegrity:
===================================
Date: 2016-06-18 09:18:37.505
Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume2\Windows\System32\efswrt.dll because the set of per-page image hashes could not be found on the system.
Date: 2016-06-16 11:34:08.840
Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume2\Windows\System32\efswrt.dll because the set of per-page image hashes could not be found on the system.
Date: 2016-05-14 20:12:23.150
Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume2\Windows\System32\efswrt.dll because the set of per-page image hashes could not be found on the system.
Date: 2016-05-12 09:55:01.331
Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume2\Windows\System32\efswrt.dll because the set of per-page image hashes could not be found on the system.
Date: 2016-05-11 18:43:57.264
Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume2\Windows\System32\efswrt.dll because the set of per-page image hashes could not be found on the system.
Date: 2016-05-04 09:30:22.854
Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume2\Windows\System32\efswrt.dll because the set of per-page image hashes could not be found on the system.
Date: 2016-05-03 10:45:58.266
Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume2\Windows\System32\efswrt.dll because the set of per-page image hashes could not be found on the system.
Date: 2016-04-12 22:29:23.126
Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume2\Program Files (x86)\Emsisoft Anti-Malware\a2hooks64.dll because the set of per-page image hashes could not be found on the system.
Date: 2016-03-23 10:06:33.796
Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume2\Windows\System32\efswrt.dll because the set of per-page image hashes could not be found on the system.
Date: 2016-03-13 13:33:21.866
Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume2\Windows\System32\efswrt.dll because the set of per-page image hashes could not be found on the system.
==================== Speicherinformationen ===========================
Prozessor: Intel(R) Core(TM) i7-3770 CPU @ 3.40GHz
Prozentuale Nutzung des RAM: 33%
Installierter physikalischer RAM: 8138.67 MB
Verfügbarer physikalischer RAM: 5373.05 MB
Summe virtueller Speicher: 17340.67 MB
Verfügbarer virtueller Speicher: 14155.97 MB
==================== Laufwerke ================================
Drive c: () (Fixed) (Total:118.7 GB) (Free:18.82 GB) NTFS
Drive d: (Volume) (Fixed) (Total:1397.26 GB) (Free:577.23 GB) NTFS
Drive m: () (Network) (Total:2746.24 GB) (Free:1233.35 GB)
Drive u: () (Network) (Total:2746.24 GB) (Free:1233.35 GB)
==================== MBR & Partitionstabelle ==================
========================================================
Disk: 0 (MBR Code: Windows 7 or 8) (Size: 119.2 GB) (Disk ID: 22831FB5)
Partition 1: (Active) - (Size=100 MB) - (Type=07 NTFS)
Partition 2: (Not Active) - (Size=118.7 GB) - (Type=07 NTFS)
Partition 3: (Not Active) - (Size=450 MB) - (Type=27)
========================================================
Disk: 1 (MBR Code: Windows 7 or 8) (Size: 1397.3 GB) (Disk ID: 2669A9B4)
Partition 1: (Not Active) - (Size=1397.3 GB) - (Type=07 NTFS)
==================== Ende von Addition.txt ============================ Teil 3 - die Logs Code:
Emsisoft Anti-Malware - Version 10.0.0.5561
Letztes Update: 13.08.2015 19:07:11
Benutzerkonto:
Scaneinstellungen:
Scantyp: Malware-Scan
Objekte: Rootkits, Speicher, Traces, Dateien
Erkenne PUPs: An
Archive scannen: Aus
ADS-Scan: An
Dateierweiterungen: Aus
Advanced Caching: An
Direct Disk Access: Aus
Scan Beginn: 02.07.2016 12:42:34
C:\Program Files (x86)\Settings Manager Application.AdLink (A)
Key: HKEY_LOCAL_MACHINE\SOFTWARE\CLASSES\APPID\IEDLL.DLL Application.AdLink (A)
C:\Users\Anke\AppData\Roaming\OpenCandy Application.AppInstall (A)
C:\Users\Anke\AppData\Roaming\pdfforge Application.AppInstall (A)
C:\Users\Anke\AppData\Roaming\simplitec Application.AppInstall (A)
C:\ProgramData\babylon Application.AppInstall (A)
C:\ProgramData\dsearchlink Application.AppInstall (A)
C:\ProgramData\simplitec Application.AppInstall (A)
C:\Program Files (x86)\free video converter Application.AppInstall (A)
C:\ProgramData\WPM Application.AdSome (A)
C:\ProgramData\IePluginService Application.AdShort (A)
Value: HKEY_USERS\S-1-5-21-2048645361-787621775-3992761592-1002\SOFTWARE\MICROSOFT\WINDOWS\CURRENTVERSION\POLICIES\SYSTEM -> DISABLETASKMGR Setting.DisableTaskMgr (A)
Value: HKEY_USERS\S-1-5-21-2048645361-787621775-3992761592-501\SOFTWARE\MICROSOFT\WINDOWS\CURRENTVERSION\POLICIES\SYSTEM -> DISABLETASKMGR Setting.DisableTaskMgr (A)
Value: HKEY_USERS\S-1-5-82-3006700770-424185619-1745488364-794895919-4004696415\SOFTWARE\MICROSOFT\WINDOWS\CURRENTVERSION\POLICIES\SYSTEM -> DISABLETASKMGR Setting.DisableTaskMgr (A)
Value: HKEY_USERS\S-1-5-21-2048645361-787621775-3992761592-1002\SOFTWARE\MICROSOFT\WINDOWS\CURRENTVERSION\POLICIES\SYSTEM -> DISABLEREGISTRYTOOLS Setting.DisableRegistryTools (A)
Value: HKEY_USERS\S-1-5-21-2048645361-787621775-3992761592-501\SOFTWARE\MICROSOFT\WINDOWS\CURRENTVERSION\POLICIES\SYSTEM -> DISABLEREGISTRYTOOLS Setting.DisableRegistryTools (A)
Value: HKEY_USERS\S-1-5-82-3006700770-424185619-1745488364-794895919-4004696415\SOFTWARE\MICROSOFT\WINDOWS\CURRENTVERSION\POLICIES\SYSTEM -> DISABLEREGISTRYTOOLS Setting.DisableRegistryTools (A)
Key: HKEY_USERS\S-1-5-21-2048645361-787621775-3992761592-501\SOFTWARE\DATAMNGR Application.InstallAd (A)
Key: HKEY_USERS\S-1-5-21-2048645361-787621775-3992761592-1002\SOFTWARE\MICROSOFT\INTERNET EXPLORER\SEARCHSCOPES\{006EE092-9658-4FD6-BD8E-A21A348E59F5} Application.Win32.WSearch (A)
Key: HKEY_USERS\S-1-5-21-2048645361-787621775-3992761592-501\SOFTWARE\MICROSOFT\INTERNET EXPLORER\SEARCHSCOPES\{006EE092-9658-4FD6-BD8E-A21A348E59F5} Application.Win32.WSearch (A)
Key: HKEY_LOCAL_MACHINE\SOFTWARE\CLASSES\APPID\{09C554C3-109B-483C-A06B-F14172F1A947} Application.InstallDeal (A)
Key: HKEY_LOCAL_MACHINE\SOFTWARE\CLASSES\APPID\{4E1E9D45-8BF9-4139-915C-9F83CC3D5921} Application.InstallTool (A)
Key: HKEY_LOCAL_MACHINE\SOFTWARE\CLASSES\APPID\{B12E99ED-69BD-437C-86BE-C862B9E5444D} Application.InstallTool (A)
Key: HKEY_LOCAL_MACHINE\SOFTWARE\CLASSES\APPID\{D7EE8177-D51E-4F89-92B6-83EA2EC40800} Application.InstallTool (A)
Key: HKEY_LOCAL_MACHINE\SOFTWARE\CLASSES\APPID\ESCORT.DLL Application.Win32.WSearch (A)
Key: HKEY_LOCAL_MACHINE\SOFTWARE\CLASSES\APPID\ESCORTAPP.DLL Application.Win32.WSearch (A)
Key: HKEY_LOCAL_MACHINE\SOFTWARE\CLASSES\APPID\ESCORTENG.DLL Application.Win32.WSearch (A)
Key: HKEY_LOCAL_MACHINE\SOFTWARE\CLASSES\APPID\ESCORTLBR.DLL Application.Win32.WSearch (A)
Key: HKEY_LOCAL_MACHINE\SOFTWARE\CLASSES\APPID\ESRV.EXE Application.Win32.WSearch (A)
Value: HKEY_USERS\S-1-5-21-2048645361-787621775-3992761592-1002\SOFTWARE\MICROSOFT\WINDOWS\CURRENTVERSION\POLICIES\EXPLORER -> NOFOLDEROPTIONS Setting.NoFolderOptions (A)
Value: HKEY_USERS\S-1-5-21-2048645361-787621775-3992761592-501\SOFTWARE\MICROSOFT\WINDOWS\CURRENTVERSION\POLICIES\EXPLORER -> NOFOLDEROPTIONS Setting.NoFolderOptions (A)
Value: HKEY_USERS\S-1-5-82-3006700770-424185619-1745488364-794895919-4004696415\SOFTWARE\MICROSOFT\WINDOWS\CURRENTVERSION\POLICIES\EXPLORER -> NOFOLDEROPTIONS Setting.NoFolderOptions (A)
Key: HKEY_LOCAL_MACHINE\SOFTWARE\CLASSES\WOW6432NODE\CLSID\{1663C10B-0D55-438D-8496-19A3DBAEC0E4} Application.AdReg (A)
Key: HKEY_LOCAL_MACHINE\SOFTWARE\CLASSES\WOW6432NODE\CLSID\{A43DE495-3D00-47D4-9D2C-303115707939} Application.AdReg (A)
Key: HKEY_USERS\S-1-5-21-2048645361-787621775-3992761592-1002\SOFTWARE\SOFTONIC Application.InstallAd (A)
Key: HKEY_LOCAL_MACHINE\SOFTWARE\WOW6432NODE\SYSTWEAK Application.InstallAd (A)
Key: HKEY_USERS\S-1-5-21-2048645361-787621775-3992761592-1002\SOFTWARE\INSTALLCORE Application.AdTool (A)
Key: HKEY_LOCAL_MACHINE\SYSTEM\CONTROLSET001\SERVICES\EVENTLOG\APPLICATION\IEPLUGINSERVICE Application.AdShort (A)
Key: HKEY_LOCAL_MACHINE\SYSTEM\CONTROLSET001\SERVICES\EVENTLOG\APPLICATION\WPM Application.AdShort (A)
Key: HKEY_USERS\S-1-5-21-2048645361-787621775-3992761592-501\SOFTWARE\MICROSOFT\INTERNET EXPLORER\LOWREGISTRY\DOMSTORAGE\SUPERFISH.COM Application.AdFish (A)
C:\ProgramData\DSearchLink\DSearchLink.exe Application.Win32.InstallTool (A)
Gescannt 86778
Gefunden 41
Scan Ende: 02.07.2016 12:44:45
Scanzeit: 0:02:11 so, ich hoffe, ich habe nichts vergessen. Da ich mich damit noch nie befassen mußte, bitte ich um etwas Nachsicht, falls etwas falsch ist.
Vielen Dank. |